CVE-2024-1558

2024-04-1600:15:08

CWE-22

@huntr_ai

web.nvd.nist.gov

path traversal vulnerability

mlflow repository

file read access

server handlers.

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

6.5

Confidence

Low

EPSS

Percentile

10.5%

JSON

A path traversal vulnerability exists in the _create_model_version() function within server/handlers.py of the mlflow/mlflow repository, due to improper validation of the source parameter. Attackers can exploit this vulnerability by crafting a source parameter that bypasses the _validate_non_local_source_contains_relative_paths(source) function’s checks, allowing for arbitrary file read access on the server. The issue arises from the handling of unquoted URL characters and the subsequent misuse of the original source value for model version creation, leading to the exposure of sensitive files when interacting with the /model-versions/get-artifact handler.

Affected configurations

Vulnrichment

Node

lfprojectsmlflowMatch2.9.2

VendorProductVersionCPE
lfprojectsmlflow2.9.2cpe:2.3:a:lfprojects:mlflow:2.9.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
lfprojects	mlflow	2.9.2	cpe:2.3:a:lfprojects:mlflow:2.9.2:::::::*

CNA Affected

[
  {
    "vendor": "mlflow",
    "product": "mlflow/mlflow",
    "versions": [
      {
        "version": "unspecified",
        "status": "affected",
        "versionType": "custom",
        "lessThanOrEqual": "latest"
      }
    ]
  }
]