Medium severity5.3NVD Advisory· Published May 17, 2026· Updated May 19, 2026
CVE-2026-8752
CVE-2026-8752
Description
A weakness has been identified in h2oai h2o-3 up to 7402. This vulnerability affects the function exec of the file h2o-core/src/main/java/water/rapids/ast/prims/misc/AstSetProperty.java of the component Rapids setproperty Primitive Handler. Executing a manipulation can lead to improper access controls. The attack may be performed from remote. The exploit has been made available to the public and could be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
4- vuldb.com/submit/810108nvdThird Party AdvisoryVDB Entry
- vuldb.com/vuln/364379nvdThird Party AdvisoryVDB Entry
- vuldb.com/vuln/364379/ctinvdPermissions RequiredVDB Entry
- vulnplus-note.wetolink.com/share/pyVa0GWPuAZEnvdBroken Link
News mentions
0No linked articles in our index yet.