Lucene search
HistoryMar 24, 2023 - 3:15 p.m.
CVE-2023-1177
github
repository
mlflow
path traversal
cve-2023-1177
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.5 High
AI Score
Confidence
High
0.039 Low
EPSS
Percentile
92.0%
Path Traversal: ‘..\filename’ in GitHub repository mlflow/mlflow prior to 2.2.1.
Affected configurations
Node
lfprojectsmlflowRange<2.2.1
Related
nuclei
nuclei
Mlflow <2.2.1 - Local File Inclusion
2023-03-27 13:58:17
osv
osv
BIT-mlflow-2023-1177
2024-03-06 10:59:15
CVE-2023-1177
2023-03-24 15:15:10
prion
prion
Path traversal
2023-03-24 15:15:00
githubexploit
githubexploit
Exploit for Path Traversal in Lfprojects Mlflow
2023-11-20 18:32:46
Exploit for Path Traversal in Lfprojects Mlflow
2023-07-23 10:12:27
cvelist
cvelist
CVE-2023-1177 Path Traversal: '\..\filename' in mlflow/mlflow
2023-03-24 00:00:00
github
github
mlflow is vulnerable to remote file access in `mlflow server` and `mlflow ui` CLIs
2023-03-24 22:01:09
Remote file access vulnerability in `mlflow server` and `mlflow ui` CLIs
2023-05-01 13:43:58
mlflow Path Traversal vulnerability
2023-05-17 21:30:22
cve
cve
CVE-2023-1177
2023-03-24 15:15:10
huntr
huntr
LFI/RFI in MLflow
2023-03-03 17:15:07
Local File Read Bypass in mlflow/mlflow
2023-03-27 11:20:57
veracode
veracode
Path Traversal
2023-03-30 03:46:14
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.5 High
AI Score
Confidence
High
0.039 Low
EPSS
Percentile
92.0%
Related for NVD:CVE-2023-1177