Lucene search
+L

5 matches found

redhatcve
redhatcve
added 2025/03/22 1:25 p.m.15 views

CVE-2025-1473

A Cross-Site Request Forgery CSRF vulnerability exists in the Signup feature of mlflow/mlflow versions 2.17.0 to 2.20.1. This vulnerability allows an attacker to create a new account, which may be used to perform unauthorized actions on behalf of the malicious user...

7.1CVSS7.2AI score0.00202EPSS
Exploits1References1
vulnersosv
vulnersosv
added 2025/03/20 12:32 p.m.4 views

api-python-bet-project (>=0.1.9 <=0.1.22), argosml (>=0.0.1 <=0.1.3) +33 more potentially affected by CVE-2025-1473 via mlflow (>=2.17.0 <=2.20.2)

mlflow PYPI version =2.17.0, =0.1.9, =0.0.1, =1.0.6, =1.9.23, =0.1.0, =0.0.10, =1.1.5, =0.1.2370984012, =1.6.0, =0.14.0, =0.14.0, =0.14.0, =0.1.1, =0.1.2 and more Source cves: CVE-2025-1473 Source advisory: OSV:GHSA-969W-GQQR-G6J3...

7.1CVSS6.3AI score0.00202EPSS
Exploits1
nvd
nvd
added 2025/03/20 10:15 a.m.11 views

CVE-2025-1473

A Cross-Site Request Forgery CSRF vulnerability exists in the Signup feature of mlflow/mlflow versions 2.17.0 to 2.20.1. This vulnerability allows an attacker to create a new account, which may be used to perform unauthorized actions on behalf of the malicious user...

7.1CVSS0.00202EPSS
Exploits1References2
osv
osv
added 2025/03/20 10:10 a.m.6 views

CVE-2025-1473 CSRF in mlflow/mlflow

A Cross-Site Request Forgery CSRF vulnerability exists in the Signup feature of mlflow/mlflow versions 2.17.0 to 2.20.1. This vulnerability allows an attacker to create a new account, which may be used to perform unauthorized actions on behalf of the malicious user...

5.4CVSS6.4AI score0.00202EPSS
Exploits1References4
cve
cve
added 2025/03/20 10:10 a.m.67 views

CVE-2025-1473

In MLflow (mlflow/mlflow), a CSRF vulnerability affects versions 2.17.0 to 2.20.1 in the Signup feature, allowing an attacker to create a new account and potentially perform unauthorized actions on behalf of the attacker’s account. The CVE-2025-1473 entry documents the flaw and its impact as Cros...

7.1CVSS5.5AI score0.00202EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder