5 matches found
CVE-2023-6015
MLflow allowed arbitrary files to be PUT onto the server...
a2 (>=0.1.0 <=0.3.17), abnativ (>=1.1.0 <=1.2.9) +337 more potentially affected by CVE-2023-6015 via mlflow (>=0.8.2 <=2.8.0)
mlflow PYPI version =0.8.2, =0.1.0, =1.1.0, =0.0.5, =0.1.0, =0.1.0, =1.7.0, =1.7.0, =1.8.0, =1.7.0, =1.7.0, =0.1.1, =0.1.5 - anovos =1.1.0 and more Source cves: CVE-2023-6015 Source advisory: OSV:GHSA-F798-QM4R-23R5...
CVE-2023-6015
MLflow allowed arbitrary files to be PUT onto the server...
CVE-2023-6015
CVE-2023-6015 corresponds to MLflow where the server could be subjected to an arbitrary file upload. Multiple connected sources corroborate: the vulnerability is described as allowing arbitrary files to be PUT onto the MLflow server, with various third-party advisories and vulnerability databases...
CVE-2023-6015 MLflow Arbitrary File Upload
MLflow allowed arbitrary files to be PUT onto the server...