Home > Vulnerability Database > CVE-2024-8616

Mend.io Vulnerability Database

CVE-2024-8616

Date: March 20, 2025

In h2oai/h2o-3 version 3.46.0, the "/99/Models/{name}/json" endpoint allows for arbitrary file overwrite on the target server. The vulnerability arises from the "exportModelDetails" function in "ModelsHandler.java", where the user-controllable "mexport.dir" parameter is used to specify the file path for writing model details. This can lead to overwriting files at arbitrary locations on the host system.

Severity Score

8.2

Related Resources (5)

Url: https://huntr.com/bounties/aebf69a5-b9b1-4d2f-a8ff-902c11a8c97a

Url: https://github.com/h2oai/h2o-3

Url: https://nvd.nist.gov/vuln/detail/CVE-2024-8616

Url: https://github.com/h2oai/h2o-3/blob/088190f9d0370a02a483fca68d8dc89c996b4f83/h2o-core/src/main/java/water/api/ModelsHandler.java#L310

Url: https://www.mend.io/vulnerability-database/CVE-2024-8616

Severity Score

8.2

Weakness Type (CWE)

External Control of File Name or Path

CWE-73

CVSS v3.1

Base Score:	8.2
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	LOW
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2024-8616

Date: March 20, 2025

Severity Score

Related Resources (5)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?