4 matches found
CVE-2023-6753
Path Traversal in GitHub repository mlflow/mlflow prior to 2.9.2...
a2 (>=0.1.0 <=0.3.17), abnativ (>=1.1.0 <=1.2.9) +339 more potentially affected by CVE-2023-6753 via mlflow (>=0.8.2 <=2.9.1)
mlflow PYPI version =0.8.2, =0.1.0, =1.1.0, =0.0.5, =0.1.0, =0.1.0, =1.7.0, =1.7.0, =1.8.0, =1.7.0, =1.7.0, =0.1.1, =0.1.5 - anovos =1.1.0 and more Source cves: CVE-2023-6753 Source advisory: OSV:GHSA-V945-R3RC-6FJM...
CVE-2023-6753
Path Traversal in GitHub repository mlflow/mlflow prior to 2.9.2...
CVE-2023-6753
CVE-2023-6753 is a path traversal vulnerability in mlflow/mlflow prior to 2.9.2. Affected software: mlflow/mlflow. Root cause: path traversal allowing access to files beyond the intended directory. Impact per CVE metrics: Confidentiality, Integrity, and Availability high. Exploitation details and...