A vulnerability was found in h2oai h2o-3 up to 3.46.0. It has been declared as critical. Affected by this vulnerability is the function
MojoConvertTool
of the component run_tool. The manipulation leads to resource consumption.
This vulnerability is known as CVE-2024-5979. The attack can be launched remotely. There is no exploit available.