Vulnerability Database

296,733

Total vulnerabilities in the database

CVE-2024-1456

An S3 bucket takeover vulnerability was identified in the h2oai/h2o-3 repository. The issue involves the S3 bucket 'http://s3.amazonaws.com/h2o-training', which was found to be vulnerable to unauthorized takeover.

Published: Apr 16, 2024
Updated: Jul 29, 2025
CVE: CVE-2024-1456
Exploit:

No technical information available.

CWEs:

CWE-840

Affected Software
References

Software	From	Fixed in
h2o / h2o	3.45.0.6386	3.45.0.6386.x

https://huntr.com/bounties/7c1b7f27-52f3-4b4b-9d81-e277f5e0ab6b

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo