A vulnerability was found in h2oai H2O up to 3.46.0.4. It has been classified as problematic. This affects an unknown part of the component JDBC Connection Handler. The manipulation of the argument connection_url leads to deserialization.

This vulnerability is uniquely identified as CVE-2024-45758. Access to the local network is required for this attack. Furthermore, there is an exploit available.