How severe is CVE-2024-1456?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.1 out of 10.

What type of vulnerability is CVE-2024-1456?

This is classified as CWE-840, which is a common weakness in software security.

CVE-2024-1456

HIGH Year: 2024

CVSS v3 Score

7.1

High

Weakness Type

CWE-840

View all →

Vulnerability Description

An S3 bucket takeover vulnerability was identified in the h2oai/h2o-3 repository. The issue involves the S3 bucket 'http://s3.amazonaws.com/h2o-training', which was found to be vulnerable to unauthorized takeover.

CVE-2024-42033

HIGH

CVSS:7.1(High)

Access control vulnerability in the security verification module mpact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

CWE-8402024

CVE-2021-4111

HIGH

CVSS:7.3(High)

yetiforcecrm is vulnerable to Business Logic Errors

CWE-8402021

CVE-2022-1155

HIGH

CVSS:7.4(High)

Old sessions are not blocked by the login enable function. in GitHub repository snipe/snipe-it prior to 5.3.10.

CWE-8402022

CVE-2021-22926

HIGH

CVSS:7.5(High)

libcurl-using applications can ask for a specific client certificate to be used in a transfer. This is done with the `CURLOPT_SSLCERT` option (`--cert` with the command line tool).When libcurl is buil...

CWE-8402021

CVE-2022-27782

HIGH

CVSS:7.5(High)

libcurl would reuse a previously created connection even when a TLS or SSHrelated option had been changed that should have prohibited reuse.libcurl keeps previously used connections in a connection po...

CWE-8402022

CVE-2024-2267

HIGH

CVSS:7.5(High)

A vulnerability was found in keerti1924 Online-Book-Store-Website 1.0 and classified as problematic. This issue affects some unknown processing of the file /shop.php. The manipulation of the argument ...

CWE-8402024

CVE-2024-1456

Vulnerability Description

Related Vulnerabilities

CVE-2024-42033

CVE-2021-4111

CVE-2022-1155

CVE-2021-22926

CVE-2022-27782

CVE-2024-2267