1231 matches found
CVE-2026-2033
CVE-2026-2033 affects the MLflow Tracking Server artifact handling, exposing a Directory Traversal leading to Remote Code Execution . The flaw is in validating user-supplied artifact paths, allowing an attacker to execute code in the service account context without authentication. Multiple source...
CVE-2026-2033
MLflow Tracking Server Artifact Handler Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MLflow Tracking Server. Authentication is not required to exploit this vulnerability. The specific fla...
CVE-2026-2033 MLflow Tracking Server Artifact Handler Directory Traversal Remote Code Execution Vulnerability
MLflow Tracking Server Artifact Handler Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MLflow Tracking Server. Authentication is not required to exploit this vulnerability. The specific fla...
CVE-2026-2033 MLflow Tracking Server Artifact Handler Directory Traversal Remote Code Execution Vulnerability
MLflow Tracking Server Artifact Handler Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MLflow Tracking Server. Authentication is not required to exploit this vulnerability. The specific fla...
GHSA-68RP-WP8R-4726 vulnerabilities
Vulnerabilities for packages: airflow, kubeflow-volumes-web-app, emissary, mitmproxy, mlflow, open-webui...
CVE-2026-27199 vulnerabilities
Vulnerabilities for packages: superset, airflow, kubeflow-pipelines-visualization-server, tensorflow-cpu-jupyter, kubeflow-volumes-web-app, emissary, mlflow, open-webui...
GHSA-29VQ-49WR-VM6X vulnerabilities
Vulnerabilities for packages: superset, airflow, kubeflow-pipelines-visualization-server, tensorflow-cpu-jupyter, kubeflow-volumes-web-app, emissary, mlflow, open-webui...
CVE-2026-27205 vulnerabilities
Vulnerabilities for packages: airflow, kubeflow-volumes-web-app, emissary, mitmproxy, mlflow, open-webui...
GHSA-29VQ-49WR-VM6X vulnerabilities
Vulnerabilities for packages: kubeflow-volumes-web-app, open-webui, litellm, tensorflow-cpu-jupyter, tensorflow-gpu-jupyter, airflow, azure-functions-python-worker, airflow-core, kubeflow-pipelines-visualization-server, superset, mlflow, localstack, emissary...
GHSA-68RP-WP8R-4726 vulnerabilities
Vulnerabilities for packages: mitmproxy, kubeflow-volumes-web-app, open-webui, airflow, airflow-core, mlflow, emissary...
CVE-2026-27199 vulnerabilities
Vulnerabilities for packages: kubeflow-volumes-web-app, open-webui, litellm, tensorflow-cpu-jupyter, tensorflow-gpu-jupyter, airflow, azure-functions-python-worker, airflow-core, kubeflow-pipelines-visualization-server, superset, mlflow, localstack, emissary...
CVE-2026-27205 vulnerabilities
Vulnerabilities for packages: mitmproxy, kubeflow-volumes-web-app, open-webui, airflow, airflow-core, mlflow, emissary...
MLflow 路径遍历漏洞
MLFlow is an open-source platform that simplifies machine learning development. It includes features for tracking experiments, packaging code for reproducible executions, and sharing and deploying models. MLFlow has a path traversal vulnerability, which stems from insufficient validation of paths...
MLflow 安全漏洞
MLflow is an open-source platform that simplifies machine learning development. It includes features like tracking experiments, packaging code for reproducible runs, and sharing and deploying models. There is a security vulnerability in MLflow, which stems from the use of hardcoded default...
PT-2026-20862
Name of the Vulnerable Software and Affected Versions MLflow affected versions not specified Description MLflow is susceptible to an authentication bypass due to the use of default passwords. This allows unauthorized access to the system. The issue involves a critical security flaw with a CVSS...
MLflow Use of Default Password Authentication Bypass Vulnerability
This vulnerability allows remote attackers to bypass authentication on affected installations of MLflow. Authentication is not required to exploit this vulnerability. The specific flaw exists within the basicauth.ini file. The file contains hard-coded default credentials. An attacker can leverage...
Missing Authorization Validation on MLflow MPU Endpoints Leads to Cross-Resource Artifact Overwrite, Model Poisoning, and Cross-Boundary Command Execution on Model Load
Analyzed version: 5af88dc08a54d40dddfc019da9e7f0fd0fcf34e2 git describe: nightly-2300-g5af88dc08, local mlflow.version: 3.10.1.dev0 In --serve-artifacts mode, MLflow exposes MPU endpoints for large-file multipart uploads. However, its authorization logic only covers the /mlflow-artifacts/artifact...
Authentication Bypass on FastAPI Routes (Job API, OTel API) When Basic Auth Enabled
Summary When MLflow is started with authentication enabled --app-name basic-auth and served via uvicorn ASGI, the FastAPI permission middleware only enforces authentication on /gateway/ routes. All other FastAPI routes -- including the Job API /ajax-api/3.0/jobs/ and the OpenTelemetry trace...
Authorization Bypass in SearchModelVersions Allows Any Authenticated User to Enumerate All Model Versions Regardless of Permissions
Summary MLflow's SearchModelVersions REST API endpoint GET /api/2.0/mlflow/model-versions/search and GraphQL query mlflowSearchModelVersions lack per-model authorization checks when basic auth is enabled. Any authenticated user can enumerate ALL model versions across ALL registered models,...
PT-2026-8004
Name of the Vulnerable Software and Affected Versions MLflow Tracking Server affected versions not specified Description A directory traversal issue exists in the MLflow Tracking Server's artifact handler, potentially leading to remote code execution. The issue involves improper handling of file...