Description
An S3 bucket takeover vulnerability was identified in the h2oai/h2o-3 repository. The issue involves the S3 bucket 'http://s3.amazonaws.com/h2o-training', which was found to be vulnerable to unauthorized takeover.
INFO
Published Date :
2024-04-16T00:00:13.641Z
Last Modified :
2024-08-01T18:40:21.031Z
Source :
@huntr_ai
AFFECTED PRODUCTS
The following products are affected by CVE-2024-1456 vulnerability.
| Vendors | Products |
|---|---|
| H2o |
|
| H2oai |
|
REFERENCES
Here, you will find a curated list of external links that provide in-depth information to CVE-2024-1456.
CVSS Vulnerability Scoring System
Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact