h2o@3.46.0.1 vulnerabilities

H2O, Fast Scalable Machine Learning, for python

latest version

3.46.0.1
first published

6 years ago
latest version published

2 months ago
licenses detected
- Apache-2.0
  [0,)
View h2o package health on Snyk Advisor Open this link in a new tab

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the h2o package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability Vulnerable Version

Vulnerability	Vulnerable Version
C External Control of File Name or Path Affected versions of this package are vulnerable to External Control of File Name or Path via the `ImportFiles` function due to improper input validation. An attacker can manipulate file paths to access or modify files outside of the intended directories by supplying crafted input. How to fix External Control of File Name or Path? There is no fixed version for `h2o`.	[0,)

External Control of File Name or Path

Affected versions of this package are vulnerable to External Control of File Name or Path via the ImportFiles function due to improper input validation. An attacker can manipulate file paths to access or modify files outside of the intended directories by supplying crafted input.

How to fix External Control of File Name or Path?

There is no fixed version for h2o.

[0,)

Go back to all versions of this package

h2o@3.46.0.1 vulnerabilities

H2O, Fast Scalable Machine Learning, for python

latest version

first published

latest version published

licenses detected

Direct Vulnerabilities