cbcvebase.
CVE-2024-6863
published 2025-03-20

CVE-2024-6863: In h2oai/h2o-3 version 3.46.0, an endpoint exposing a custom EncryptionTool allows an attacker to encrypt any files on the target server with a key of their…

PriorityP340medium6.5CVSS 3.0
AVNACLPRNUINSUCNILAL
EPSS
0.33%
24.7th percentile
In h2oai/h2o-3 version 3.46.0, an endpoint exposing a custom EncryptionTool allows an attacker to encrypt any files on the target server with a key of their choosing. The chosen key can also be overwritten, resulting in ransomware-like behavior. This vulnerability makes it possible for an attacker to encrypt arbitrary files with keys of their choice, making it exceedingly difficult for the target to recover the keys needed for decryption.

Affected

3 ranges
VendorProductVersion rangeFixed in
h2oh2o
h2oh2o3.32.1.2 – 3.46.0
h2oaih2oai_h2o-3unspecified – latest
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.