Skip to main content

External Control of File Name or Path

CVE-2023-6569

Severity High
Score 8.2/10

Summary

External Control of File Name or Path vulnerability present in Python-h2o and Maven-ai.h2o:h2o-core packages.

  • LOW
  • NETWORK
  • LOW
  • UNCHANGED
  • NONE
  • NONE
  • NONE
  • HIGH

CWE-73 - External Control of File Name or Path

The software allows user input to control or influence paths or file names that are used in filesystem operations.

Advisory Timeline

  • Published