CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1231 matches found

Cvelist•added 2026/04/07 12:57 p.m.•23 views

CVE-2026-33866 Authorization Bypass in MLflow AJAX Endpoint

MLflow is vulnerable to an authorization bypass affecting the AJAX endpoint used to download saved model artifacts. Due to missing access‑control validation, a user without permissions to a given experiment can directly query this endpoint and retrieve model artifacts they are not authorized to...

5.3CVSS0.00362EPSS

Exploits1References3

Vulnrichment•added 2026/04/07 12:57 p.m.•0 views

CVE-2026-33866 Authorization Bypass in MLflow AJAX Endpoint

5.3CVSS5.9AI score0.00362EPSS

Exploits1References3

CVE•added 2026/04/07 12:57 p.m.•6 views

CVE-2026-33866

CVE-2026-33866 affects MLflow up to version 3.10.1 and describes an authorization bypass in the AJAX endpoint for downloading saved model artifacts. Due to missing access-control validation, a user without permissions to a given experiment can directly query the endpoint and retrieve artifacts th...

5.3CVSS5.9AI score0.00362EPSS

Exploits1References3Affected Software1

ATTACKERKB•added 2026/04/07 12:57 p.m.•7 views

CVE-2026-33866

5.3CVSS5.9AI score0.00362EPSS

Exploits2References3

Cvelist•added 2026/04/07 12:57 p.m.•18 views

CVE-2026-33865 Stored XSS via unsafe YAML parsing in MLflow

MLflow is vulnerable to Stored Cross-Site Scripting XSS caused by unsafe parsing of YAML-based MLmodel artifacts in its web interface. An authenticated attacker can upload a malicious MLmodel file containing a payload that executes when another user views the artifact in the UI. This allows actio...

5.1CVSS0.00218EPSS

Exploits1References3

CVE•added 2026/04/07 12:57 p.m.•11 views

CVE-2026-33865

MLflow

5.4CVSS5.9AI score0.00218EPSS

Exploits1References3Affected Software1

Vulnrichment•added 2026/04/07 12:57 p.m.•2 views

CVE-2026-33865 Stored XSS via unsafe YAML parsing in MLflow

5.1CVSS5.9AI score0.00218EPSS

Exploits1References3

Positive Technologies•added 2026/04/07 12:0 a.m.•2 views

PT-2026-30820

Name of the Vulnerable Software and Affected Versions MLflow versions through 3.10.1 Description MLflow is susceptible to Stored Cross-Site Scripting XSS due to unsafe parsing of YAML-based MLmodel artifacts within its web interface. An authenticated attacker can upload a malicious MLmodel file...

5.4CVSS5.8AI score0.00218EPSS

Exploits1References15

CNNVD•added 2026/04/07 12:0 a.m.•5 views

MLflow 安全漏洞

MLFlow is an open-source platform that simplifies machine learning development. It includes features for tracking experiments, packaging code for reproducible runs, and sharing and deploying models. Versions of MLFlow prior to 3.10.1 contain security vulnerabilities. These vulnerabilities stem fr...

5.4CVSS5.9AI score0.00362EPSS

Exploits2References2

CNNVD•added 2026/04/07 12:0 a.m.•4 views

MLflow 跨站脚本漏洞

MLFlow is an open-source platform that simplifies machine learning development. It includes features like tracking experiments, packaging code for reproducible runs, and sharing and deploying models. Versions of MLFlow prior to 3.10.1 contain a cross-site scripting vulnerability. This vulnerabili...

5.4CVSS5.7AI score0.00218EPSS

Exploits1References2

Positive Technologies•added 2026/04/07 12:0 a.m.•5 views

PT-2026-30821

Name of the Vulnerable Software and Affected Versions MLflow versions prior to 3.10.1 Description An authorization bypass exists in the AJAX endpoint used to download saved model artifacts. Due to missing access-control validation, a user without permissions to a specific experiment can directly...

5.3CVSS5.7AI score0.00362EPSS

Exploits2References10

RedhatCVE•added 2026/04/06 5:0 p.m.•2 views

CVE-2026-0545

In mlflow/mlflow, the FastAPI job endpoints under /ajax-api/3.0/jobs/ are not protected by authentication or authorization when the basic-auth app is enabled. This vulnerability affects the latest version of the repository. If job execution is enabled MLFLOWSERVERENABLEJOBEXECUTION=true and any j...

9.8CVSS7.8AI score0.03976EPSS

Exploits1References1

vulnersOsv•added 2026/04/03 6:31 p.m.•3 views

azure-ai-generative (>=1.0.0b1 <=1.0.0b3), azure-ai-resources (>=1.0.0b1 <=1.0.0b9) +15 more potentially affected by CVE-2026-0545 via mlflow-skinny (>=3.0.0 <=3.0.1)

mlflow-skinny PYPI version =3.0.0, =1.0.0b1, =1.0.0b1, =0.1.0, =0.1.0, =2.5.0, =0.0.13, =3.0.0, =0.1.0, =0.1.4 and more Source cves: CVE-2026-0545 Source advisory: SNYK:PYTHON-MLFLOWSKINNY-15922302...

9.8CVSS7.7AI score0.03976EPSS

Exploits1

EUVD•added 2026/04/03 6:31 p.m.•5 views

EUVD-2026-18809

9.1CVSS7.8AI score0.03976EPSS

Exploits1References2

vulnersOsv•added 2026/04/03 6:31 p.m.•3 views

databricks-agents (>=0.1.0 <=1.0.0rc1), datamint (>=2.5.0 <=2.5.2) +3 more potentially affected by CVE-2026-0545 via mlflow (>=3.0.0rc2 <=3.0.1)

mlflow PYPI version =3.0.0rc2, =0.1.0, =2.5.0, =0.2.0.dev0, =0.6.7, =0.8.1 Source cves: CVE-2026-0545 Source advisory: SNYK:PYTHON-MLFLOW-15922301...

9.8CVSS7.7AI score0.03976EPSS

Exploits1

vulnersOsv•added 2026/04/03 6:31 p.m.•3 views

a2 (>=0.1.0 <=0.3.17), abnativ (>=1.1.0 <=1.2.9) +357 more potentially affected by CVE-2026-0545 via mlflow (>=0.8.2 <=3.10.1)

mlflow PYPI version =0.8.2, =0.1.0, =1.1.0, =0.0.5, =0.1.0, =0.1.0, =1.7.0, =1.7.0, =1.8.0, =1.7.0, =1.7.0, =0.1.1, =0.1.5 - anovos =1.1.0 and more Source cves: CVE-2026-0545 Source advisory: OSV:GHSA-7QHF-V65M-G5F3...

9.8CVSS7.7AI score0.03976EPSS

Exploits1

Snyk•added 2026/04/03 6:31 p.m.•0 views

Missing Authentication for Critical Function

Overview mlflow is a platform to streamline machine learning development, including tracking experiments, packaging code into reproducible runs, and sharing and deploying models. Affected versions of this package are vulnerable to Missing Authentication for Critical Function via the FastAPI...

9.8CVSS7.7AI score0.03976EPSS

Exploits1References2