CVE-2024-6854
Published: 20 March 2025
Summary
CVE-2024-6854 is a high-severity Absolute Path Traversal (CWE-36) vulnerability in H2O H2O. Its CVSS base score is 7.1 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation of Remote Services (T1210); ranked at the 28.5th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
This vulnerability is AI-related — categorised as Machine Learning Libraries; in the Supply Chain and Deployment risk domain.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-6978
Vulnerability details
In h2oai/h2o-3 version 3.46.0, the endpoint for exporting models does not restrict the export location, allowing an attacker to export a model to any file in the server's file structure, thereby overwriting it. This vulnerability can be exploited to overwrite…
more
any file on the target server with a trained model file, although the content of the overwrite is not controllable by the attacker.
- CWE(s)
AI Security AnalysisAI
- AI Category
- Machine Learning Libraries
- Risk Domain
- Supply Chain and Deployment
- OWASP Top 10 for LLMs 2025
- None mapped
- Classification Reason
- Matched keywords: h2o
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Unrestricted export endpoint enables remote service exploitation (T1210) for arbitrary file overwrites, facilitating disk content wipe for impact (T1488) or defense impairment (T1561.001).
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.