CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

vulnersOsv•added 2026/05/12 3:23 p.m.•9 views

databricks-agents (>=0.1.0 <=1.0.0rc1), datamint (>=2.5.0 <=2.5.2) +3 more potentially affected by CVE-2026-2614 via mlflow (>=3.0.0rc2 <=3.0.1)

mlflow PYPI version =3.0.0rc2, =0.1.0, =2.5.0, =0.2.0.dev0, =0.6.7, =0.8.1 Source cves: CVE-2026-2614 Source advisory: SNYK:PYTHON-MLFLOW-16643490...

7.5CVSS7AI score0.00737EPSS

vulnersOsv•added 2026/05/12 3:23 p.m.•8 views

azure-ai-generative (>=1.0.0b1 <=1.0.0b3), azure-ai-resources (>=1.0.0b1 <=1.0.0b9) +15 more potentially affected by CVE-2026-2614 via mlflow-skinny (>=3.0.0 <=3.0.1)

mlflow-skinny PYPI version =3.0.0, =1.0.0b1, =1.0.0b1, =0.1.0, =0.1.0, =2.5.0, =0.0.13, =3.0.0, =0.1.0, =0.1.4 and more Source cves: CVE-2026-2614 Source advisory: SNYK:PYTHON-MLFLOWSKINNY-16643511...

7.5CVSS7.1AI score0.00737EPSS

Snyk•added 2026/05/12 3:23 p.m.•18 views

Directory Traversal

Overview mlflow is a platform to streamline machine learning development, including tracking experiments, packaging code into reproducible runs, and sharing and deploying models. Affected versions of this package are vulnerable to Directory Traversal via the createmodelversion function. An attack...

8.7CVSS7.5AI score0.00737EPSS

Snyk•added 2026/05/12 3:23 p.m.•6 views

Directory Traversal

Overview Affected versions of this package are vulnerable to Directory Traversal via the createmodelversion function. An attacker can access arbitrary files on the server's filesystem by including the mlflow.prompt.isprompt tag in a CreateModelVersion request, which bypasses source path validatio...

8.7CVSS7.5AI score0.00737EPSS

Github Security Blog•added 2026/05/11 9:31 p.m.•14 views

MLflow allows an unauthenticated remote attacker to read arbitrary files from the server's filesystem

A vulnerability in the createmodelversion handler of mlflow/server/handlers.py in mlflow/mlflow versions 3.9.0 and earlier allows an unauthenticated remote attacker to read arbitrary files from the server's filesystem. The issue arises when a CreateModelVersion request includes the tag...

Exploits1References4Affected Software1

EUVD•added 2026/05/11 9:31 p.m.•20 views

EUVD-2026-29180

vulnersOsv•added 2026/05/11 9:31 p.m.•8 views

Exploits1References3

a2 (>=0.1.0 <=0.3.17), abnativ (>=1.1.0 <=1.2.9) +347 more potentially affected by CVE-2026-2614 via mlflow (>=0.8.2 <=3.0.1)

mlflow PYPI version =0.8.2, =0.1.0, =1.1.0, =0.0.5, =0.1.0, =0.1.0, =1.7.0, =1.7.0, =1.8.0, =1.7.0, =1.7.0, =0.1.1, =0.1.5 - anovos =1.1.0 and more Source cves: CVE-2026-2614 Source advisory: OSV:GHSA-42H5-H8QH-VV9V...

7.5CVSS7.1AI score0.00737EPSS

OSV•added 2026/05/11 9:31 p.m.•8 views

GHSA-42H5-H8QH-VV9V MLflow allows an unauthenticated remote attacker to read arbitrary files from the server's filesystem

NVD•added 2026/05/11 8:25 p.m.•14 views

Exploits1References4

CVE-2026-2614

7.5CVSS0.00737EPSS

Cvelist•added 2026/05/11 7:2 p.m.•39 views

CVE-2026-2614 Arbitrary File Read via Prompt Tag Source Validation Bypass in mlflow/mlflow

7.5CVSS0.00737EPSS

Vulnrichment•added 2026/05/11 7:2 p.m.•8 views

CVE-2026-2614 Arbitrary File Read via Prompt Tag Source Validation Bypass in mlflow/mlflow

CVE•added 2026/05/11 7:2 p.m.•11 views

CVE-2026-2614

Summary: CVE-2026-2614 affects mlflow/mlflow

Exploits1References2Affected Software1

vulnersOsv•added 2026/05/11 6:31 p.m.•9 views

a2 (>=0.1.0 <=0.3.17), abadpour (>=6.13.1 <=7.24.1) +946 more potentially affected by CVE-2026-2393 via mlflow (>=0.8.2 <=3.8.1)

mlflow PYPI version =0.8.2, =0.1.0, =6.13.1, =9.273.1, =1.1.0, =0.1.0, =0.1.0, =0.4.4, =0.3.0, =0.0.5, =1.0.0, =0.1.0, =1.1.1 - ai-helpers-pytorch-utils =0.1.0a1 - ailine-core =0.5.5 and more Source cves: CVE-2026-2393 Source advisory: OSV:GHSA-65H7-C7C4-MGHX...

7.1CVSS7AI score0.00288EPSS

Github Security Blog•added 2026/05/11 6:31 p.m.•11 views

MLflow Has a Server-Side Request Forgery (SSRF) Vulnerability

A Server-Side Request Forgery SSRF vulnerability exists in MLflow versions prior to 3.9.0. The createwebhook function in mlflow/server/handlers.py accepts a user-controlled url parameter without validation, and the sendwebhookrequest function in mlflow/webhooks/delivery.py sends HTTP POST request...

7.1CVSS7.2AI score0.00288EPSS

Exploits1References4Affected Software1

EUVD•added 2026/05/11 6:31 p.m.•11 views

EUVD-2026-29093

7.1CVSS6AI score0.00288EPSS

Exploits1References3

OSV•added 2026/05/11 6:31 p.m.•5 views

GHSA-65H7-C7C4-MGHX MLflow Has a Server-Side Request Forgery (SSRF) Vulnerability

7.1CVSS6AI score0.00288EPSS

Exploits1References4

NVD•added 2026/05/11 6:16 p.m.•9 views

CVE-2026-2393

7.1CVSS0.00288EPSS

vulnersOsv•added 2026/05/11 6:14 p.m.•8 views

azure-ai-generative (>=1.0.0b1 <=1.0.0b3), azure-ai-resources (>=1.0.0b1 <=1.0.0b9) +15 more potentially affected by CVE-2026-2393 via mlflow-skinny (>=3.0.0 <=3.0.1)

mlflow-skinny PYPI version =3.0.0, =1.0.0b1, =1.0.0b1, =0.1.0, =0.1.0, =2.5.0, =0.0.13, =3.0.0, =0.1.0, =0.1.4 and more Source cves: CVE-2026-2393 Source advisory: SNYK:PYTHON-MLFLOWSKINNY-16642072...

7.1CVSS7AI score0.00288EPSS

vulnersOsv•added 2026/05/11 6:14 p.m.•6 views

databricks-agents (>=0.1.0 <=1.0.0rc1), datamint (>=2.5.0 <=2.5.2) +3 more potentially affected by CVE-2026-2393 via mlflow (>=3.0.0rc2 <=3.0.1)

mlflow PYPI version =3.0.0rc2, =0.1.0, =2.5.0, =0.2.0.dev0, =0.6.7, =0.8.1 Source cves: CVE-2026-2393 Source advisory: SNYK:PYTHON-MLFLOW-16642071...

7.1CVSS7AI score0.00288EPSS