Lucene search

Mlflow Security Vulnerabilities - 2023

cve

CVE-2023-1176

Absolute Path Traversal in GitHub repository mlflow/mlflow prior to 2.2.2.

3.3CVSS

4AI Score

0.0004EPSS

2023-03-24 03:15 PM

cve

CVE-2023-1177

Path Traversal: '..\filename' in GitHub repository mlflow/mlflow prior to 2.2.1.

9.8CVSS

9.3AI Score

0.086EPSS

2023-03-24 03:15 PM

cve

CVE-2023-2356

Relative Path Traversal in GitHub repository mlflow/mlflow prior to 2.3.1.

7.5CVSS

7.5AI Score

0.012EPSS

2023-04-28 12:15 AM

cve

CVE-2023-2780

Path Traversal: '..\filename' in GitHub repository mlflow/mlflow prior to 2.3.1.

9.8CVSS

9.4AI Score

0.033EPSS

2023-05-17 09:15 PM

cve

CVE-2023-30172

A directory traversal vulnerability in the /get-artifact API method of the mlflow platform up to v2.0.1 allows attackers to read arbitrary files on the server via the path parameter.

7.5CVSS

7.3AI Score

0.001EPSS

2023-05-11 02:15 AM

cve

CVE-2023-3765

Absolute Path Traversal in GitHub repository mlflow/mlflow prior to 2.5.0.

10CVSS

9.3AI Score

0.015EPSS

2023-07-19 01:15 AM

cve

CVE-2023-4033

OS Command Injection in GitHub repository mlflow/mlflow prior to 2.6.0.

7.8CVSS

8AI Score

0.0004EPSS

2023-08-01 01:15 AM

cve

CVE-2023-43472

An issue in MLFlow versions 2.8.1 and before allows a remote attacker to obtain sensitive information via a crafted request to REST API.

7.5CVSS

7.1AI Score

0.014EPSS

2023-12-05 07:15 AM

cve

CVE-2023-6014

An attacker is able to arbitrarily create an account in MLflow bypassing any authentication requirment.

9.8CVSS

9.4AI Score

0.001EPSS

2023-11-16 09:15 PM

cve

CVE-2023-6015

MLflow allowed arbitrary files to be PUT onto the server.

7.5CVSS

7.5AI Score

0.001EPSS

2023-11-16 04:15 PM

cve

CVE-2023-6018

An attacker can overwrite any file on the server hosting MLflow without any authentication.

9.8CVSS

9.4AI Score

0.89EPSS

2023-11-16 04:15 PM

cve

CVE-2023-6568

A reflected Cross-Site Scripting (XSS) vulnerability exists in the mlflow/mlflow repository, specifically within the handling of the Content-Type header in POST requests. An attacker can inject malicious JavaScript code into the Content-Type header, which is then improperly reflected back to the us...

6.1CVSS

5.8AI Score

0.0005EPSS

2023-12-07 05:15 AM

cve

CVE-2023-6709

Improper Neutralization of Special Elements Used in a Template Engine in GitHub repository mlflow/mlflow prior to 2.9.2.

8.8CVSS

8.6AI Score

0.001EPSS

2023-12-12 04:15 AM

cve

CVE-2023-6753

Path Traversal in GitHub repository mlflow/mlflow prior to 2.9.2.

8.8CVSS

8.6AI Score

0.001EPSS

2023-12-13 12:15 AM

cve

CVE-2023-6831

Path Traversal: '..\filename' in GitHub repository mlflow/mlflow prior to 2.9.2.

8.1CVSS

7.9AI Score

0.004EPSS

2023-12-15 01:15 AM

cve

CVE-2023-6909

Path Traversal: '..\filename' in GitHub repository mlflow/mlflow prior to 2.9.2.

7.5CVSS

7.3AI Score

0.007EPSS

2023-12-18 04:15 AM

cve

CVE-2023-6940

with only one user interaction(download a malicious config), attackers can gain full command execution on the victim system.

8.8CVSS

8.8AI Score

0.001EPSS

2023-12-19 02:15 AM

cve

CVE-2023-6974

A malicious user could use this issue to access internal HTTP(s) servers and in the worst case (ie: aws instance) it could be abuse to get a remote code execution on the victim machine.

9.8CVSS

9.4AI Score

0.003EPSS

2023-12-20 06:15 AM

cve

CVE-2023-6975

A malicious user could use this issue to get command execution on the vulnerable machine and get access to data & models information.

9.8CVSS

9.5AI Score

0.001EPSS

2023-12-20 06:15 AM

cve

CVE-2023-6976

This vulnerability is capable of writing arbitrary files into arbitrary locations on the remote filesystem in the context of the server process.

8.8CVSS

8.6AI Score

0.001EPSS

2023-12-20 06:15 AM

cve

CVE-2023-6977

This vulnerability enables malicious users to read sensitive files on the server.

7.5CVSS

7.3AI Score

0.005EPSS

2023-12-20 06:15 AM