Lucene search

MLflow Path Traversal Vulnerability

🗓️ 20 Dec 2023 06:25:30Reported by GoogleType

osv🔗 osv.dev👁 8 Views

MLflow Path Traversal Vulnerability. Capable of writing arbitrary files into arbitrary locations on remote filesystem in the context of server process

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 8
OSV	BIT-mlflow-2023-6976	6 Mar 202410:56	–	osv
OSV	CVE-2023-6976	20 Dec 202306:15	–	osv
Github Security Blog	MLflow Path Traversal Vulnerability	20 Dec 202306:30	–	github
Veracode	Arbitrary File Write	21 Dec 202307:10	–	veracode
Cvelist	CVE-2023-6976 Unrestricted Upload of File with Dangerous Type	20 Dec 202305:30	–	cvelist
Prion	Design/Logic Flaw	20 Dec 202306:15	–	prion
NVD	CVE-2023-6976	20 Dec 202306:15	–	nvd
CVE	CVE-2023-6976	20 Dec 202306:15	–	cve

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2023-6976
github	www.github.com/mlflow/mlflow/commit/5044878da0c1851ccfdd5c0a867157ed9a502fbc
github	www.github.com/mlflow/mlflow
huntr	www.huntr.com/bounties/2408a52b-f05b-4cac-9765-4f74bac3f20f

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

20 Dec 2023 06:30Current

8.8High risk

Vulners AI Score8.8

CVSS38.8

EPSS0.00079