CVE-2025-6544

Critical CVSS: 9.8

A deserialization vulnerability exists in h2oai/h2o-3 versions <= 3.46.0.8, allowing attackers to read arbitrary system files and execute arbitrary code. The vulnerability arises from improper handling of JDBC connection parameters, which can be exploited by bypassing regular expression checks and using double URL encoding. This issue impacts all users of the affected versions.

Vendor

H2o

Product

H2o

CWE

CWE-502

Yayın Tarihi

2025-09-21 09:15:38

Güncelleme

2025-10-08 20:05:02

Source Identifier

security@huntr.dev

KEV Date Added

Kategoriler

CWE-502 H2o CRITICAL H2o 2025

Referanslar

https://github.com/h2oai/h2o-3/commit/0298ee348f5c73673b7b542158081e79605f5f25 https://huntr.com/bounties/53f35a0f-d644-4f82-93aa-89fe7e0aed40 https://huntr.com/bounties/53f35a0f-d644-4f82-93aa-89fe7e0aed40

Benzer Kayıtlar

High

CVE-2025-61684

Quicly, an IETF QUIC protocol implementation, is susceptible to a denial-of-service attack prior to commit d9d3df6a8530a…

Medium

CVE-2025-10768

A flaw has been found in h2oai h2o-3 up to 3.46.08. The impacted element is an unknown function of the file /99/ImportSQ…

Medium

CVE-2025-10769

A vulnerability has been found in h2oai h2o-3 up to 3.46.08. This affects an unknown function of the file /99/ImportSQLT…

High

CVE-2024-8616

In h2oai/h2o-3 version 3.46.0, the `/99/Models/{name}/json` endpoint allows for arbitrary file overwrite on the target s…

High

CVE-2024-8062

A vulnerability in the typeahead endpoint of h2oai/h2o-3 version 3.46.0 allows for a denial of service. The endpoint per…

High

CVE-2024-7768

A vulnerability in the `/3/ImportFiles` endpoint of h2oai/h2o-3 version 3.46.1 allows an attacker to cause a denial of s…