| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-45403 | H2O assertion failure when HTTP/3 requests are cancelled | h2o | h2o | Low | 3.7 | 2024-10-11 14:28:35 | Deep Dive |
| CVE-2024-45397 | H2O alllows bypassing address-based access control with 0-RTT | h2o | h2o | Medium | 5.9 | 2024-10-11 14:24:58 | Deep Dive |
| CVE-2024-25622 | H2O ignores headers configuration directives | h2o | h2o | Low | 3.1 | 2024-10-11 14:20:32 | Deep Dive |
| CVE-2024-8862 | h2oai h2o-3 JDBC Connection 1 getConnectionSafe deserialization | h2oai | h2o-3 | High | 7.3 | 2024-09-14 19:31:05 | Deep Dive |
| CVE-2024-5979 | Denial of Service via Invalid Argument in h2oai/h2o-3 | h2oai | h2oai/h2o-3 | - | - | 2024-06-27 18:40:07 | Deep Dive |
| CVE-2024-5550 | Exposure of Sensitive Information via Arbitrary System Path Lookup in h2oai/h2o-3 | h2oai | h2oai/h2o-3 | - | - | 2024-06-06 18:18:36 | Deep Dive |
| CVE-2024-1456 | S3 Bucket Takeover in h2oai/h2o-3 | h2oai | h2oai/h2o-3 | 高危 | - | 2024-04-16 00:00:14 | Deep Dive |
| CVE-2023-6569 | External Control of File Name or Path in h2oai/h2o-3 | h2oai | h2oai/h2o-3 | - | - | 2023-12-14 12:59:46 | Deep Dive |
| CVE-2023-50247 | h2o QUIC state exhaustion DoS | h2o | h2o | Low | 3.7 | 2023-12-12 19:56:21 | Deep Dive |
| CVE-2023-41337 | h2o vulnerable to TLS session resumption misdirection | h2o | h2o | Medium | 6.1 | 2023-12-12 19:42:35 | Deep Dive |
| CVE-2023-6013 | H2O Local File Include | h2oai | h2oai/h2o-3 | 超危 | - | 2023-11-16 16:07:17 | Deep Dive |
| CVE-2023-6017 | H2O S3 Bucket Takeover | h2oai | h2oai/h2o-3 | 中危 | - | 2023-11-16 16:07:02 | Deep Dive |
| CVE-2023-6038 | Local File Inclusion in h2oai/h2o-3 | h2oai | h2oai/h2o-3 | 超危 | - | 2023-11-16 16:06:44 | Deep Dive |
| CVE-2023-6016 | H2O Remote Code Execution via POJO Model Import | h2oai | h2oai/h2o-3 | 超危 | - | 2023-11-16 16:06:25 | Deep Dive |
| CVE-2023-30847 | H2O vulnerable to read from uninitialized pointer in the reverse proxy handler | h2o | h2o | High | 8.2 | 2023-04-27 14:08:35 | Deep Dive |
| CVE-2021-43848 | Unititialized memory access in h2o | h2o | h2o | High | 7.4 | 2022-02-01 12:13:56 | Deep Dive |
| CVE-2018-0608 | H2O 缓冲区错误漏洞 | Kazuho Oku | H2O | 超危 | - | 2018-06-26 14:00:00 | Deep Dive |
| CVE-2017-10908 | H2O 安全漏洞 | Kazuho Oku | H2O | 高危 | - | 2017-12-22 14:00:00 | Deep Dive |
| CVE-2017-10872 | H2O 安全漏洞 | Kazuho Oku | H2O | 中危 | - | 2017-12-22 14:00:00 | Deep Dive |
| CVE-2017-10869 | H2O 缓冲区错误漏洞 | Kazuho Oku | H2O | 高危 | - | 2017-12-22 14:00:00 | Deep Dive |