Lucene search
K
LfprojectsMlflow

76 matches found

CVE
CVE
added 2024/06/04 12:2 p.m.276 views

CVE-2024-37061

MLflow CVE-2024-37061 affects MLflow platforms running version 1.11.0 or newer. A maliciously crafted MLproject can trigger remote code execution on an end user’s system when run. Multiple connected sources corroborate RCE related to MLflow projects input handling, including descriptions and advi...

8.8CVSS8.6AI score0.00884EPSS
CVE
CVE
added 2023/03/24 12:0 a.m.168 views

CVE-2023-1177

CVE-2023-1177 is a path traversal / local-file-inclusion vulnerability in mlflow/mlflow prior to 2.2.1. Affects the MLflow server endpoints handling model-versions and artifacts (e.g., GET /model-versions/get-artifact) where a crafted path can disclose files outside the intended directory. Concre...

9.8CVSS9.4AI score0.69468EPSS
In wildWeb
CVE
CVE
added 2024/05/16 9:3 a.m.128 views

CVE-2024-3848

CVE-2024-3848 affects mlflow/mlflow up to version 2.11.0. The path traversal stems from improper handling of the fragment component in artifact URLs, where a ‘#’ can insert a path into the URL fragment and bypass validation, allowing an attacker to read arbitrary files by mapping the URL to a fil...

7.5CVSS7.2AI score0.43284EPSS
CVE
CVE
added 2022/02/23 8:45 a.m.123 views

CVE-2022-0736

CVE-2022-0736 affects mlflow/mlflow prior to 1.23.1, describing an insecure temporary file issue. The root cause is use of the deprecated tempfile.mktemp() pattern in the affected code, with remediation to upgrade to mlflow 1.23.1 or later as indicated by OSV/GHSA entries. The connected sources c...

8.2CVSS7.6AI score0.01551EPSS
CVE
CVE
added 2024/06/04 12:1 p.m.122 views

CVE-2024-37059

MLflow contains a deserialization vulnerability affecting versions 0.5.0 and later in the PyTorch integration (mlflow/pytorch/init .py _load_model), where untrusted model data can trigger arbitrary code execution when a PyFunc model is loaded. Reports from Veracode describe attacker-controlled pi...

8.8CVSS7.6AI score0.00618EPSS
CVE
CVE
added 2023/12/18 12:0 a.m.119 views

CVE-2023-6909

Mlflow up to version 2.9.2 is affected by CVE-2023-6909: a path traversal in the repository mlflow/mlflow allows escaping to read sensitive files via the sequence \..\filename. The vulnerability affects the mlflow/mlflow project prior to 2.9.2 and is classified as CWE-29. Impact in the NVD/NVD-de...

7.5CVSS7.4AI score0.89716EPSS
In wild
CVE
CVE
added 2024/02/23 9:58 p.m.107 views

CVE-2024-27132

MLflow suffers from insufficient sanitization of template variables, enabling XSS when loading an untrusted recipe and potentially enabling client-side RCE in Jupyter Notebook. The root cause is lack of input sanitization in rendering templates. Public details about affected versions or patches a...

9.6CVSS7.4AI score0.00871EPSS
CVE
CVE
added 2024/11/25 1:48 p.m.102 views

CVE-2024-27134

CVE-2024-27134 : Multiple connected sources confirm a vulnerability in MLflow’s spark_udf API where excessive directory permissions allow a local attacker to achieve privilege escalation via a ToCToU attack. Affected: MLflow (spark_udf path) with local execution context. Root cause: insufficient ...

7CVSS7AI score0.0012EPSS
CVE
CVE
added 2024/05/16 9:3 a.m.102 views

CVE-2024-4263

CVE-2024-4263 describes a broken access control in mlflow/mlflow prior to 2.10.1, where users with EDIT permissions on an experiment can delete artifacts they should only be able to read/update. The issue stems from insufficient validation of DELETE requests for artifact deletions, enabling unaut...

5.4CVSS6.5AI score0.00329EPSS
CVE
CVE
added 2023/04/28 12:0 a.m.99 views

CVE-2023-2356

CVE-2023-2356 is a Relative Path Traversal flaw in mlflow/mlflow before 2.3.1. The connected sources (Nuclei template, OSV entries, GHSA advisories) describe a vulnerability allowing traversal to read sensitive server files (LFI) via a crafted path. Affected software: mlflow/mlflow, versions prio...

10CVSS7.6AI score0.04153EPSS
CVE
CVE
added 2023/07/19 12:53 a.m.99 views

CVE-2023-3765

MLflow (mlflow/mlflow) prior to version 2.5.0 contains an Absolute Path Traversal vulnerability. The issue arises in an MLflow repository and can lead to unauthorized access to sensitive information stored on the server. According to the connected sources, the affected component is mlflow/mlflow’...

10CVSS9.4AI score0.70736EPSS
CVE
CVE
added 2023/12/07 4:54 a.m.99 views

CVE-2023-6568

MLflow XSS (CVE-2023-6568) : A reflected XSS exists in mlflow/mlflow due to how the Content-Type header from POST requests is handled. The vulnerability is in mlflow/server/auth/init .py, where user-supplied Content-Type is directly inserted into a Python-formatted string and returned, allowing a...

6.5CVSS5.9AI score0.01649EPSS
CVE
CVE
added 2023/11/16 4:5 p.m.98 views

CVE-2023-6018

CVE-2023-6018 affects MLflow. An unauthenticated attacker can overwrite any file on the server hosting MLflow, potentially compromising integrity and enabling remote code execution per connected documents. Reported impact emphasizes unauthenticated file writes with high severity (CVSS up to 10.0 ...

10CVSS9.5AI score0.47874EPSS
CVE
CVE
added 2025/03/20 10:11 a.m.96 views

CVE-2025-0453

CVE-2025-0453 : In mlflow/mlflow version 2.17.2, the /graphql endpoint is vulnerable to denial of service via large batches of queries that repeatedly request all runs from a given experiment, causing uncontrolled resource consumption and making the application unresponsive. The issue is document...

7.5CVSS5.7AI score0.00517EPSS
Web
CVE
CVE
added 2024/06/06 6:19 p.m.95 views

CVE-2024-0520

CVE-2024-0520 affects mlflow/mlflow v8.2.1, enabling remote code execution via command injection in mlflow.data.http_dataset_source.py when loading an HTTP URL dataset. The filename gathered from Content-Disposition or URL path is used to form the final file path without proper sanitization, allo...

10CVSS9.5AI score0.02382EPSS
CVE
CVE
added 2024/02/23 10:0 p.m.95 views

CVE-2024-27133

CVE-2024-27133 : Affects MLflow. Insufficient sanitization of dataset table fields in MLflow recipes can cause a client-side XSS, which in turn can lead to a client-side RCE when running the recipe in Jupyter Notebook . Root cause: lack of input sanitization for untrusted datasets in the data tab...

9.6CVSS7.2AI score0.00651EPSS
CVE
CVE
added 2023/03/24 12:0 a.m.93 views

CVE-2023-1176

The CVE affects the open source MLflow project mlflow/mlflow prior to version 2.2.2 (ABSOLUTE PATH TRAVERSAL). Documented in multiple sources, the vulnerability allows an attacker to traverse the filesystem to access arbitrary files on the host via the mlflow server/ui workflow (attack vector: LO...

5.3CVSS3.9AI score0.00578EPSS
CVE
CVE
added 2023/12/20 5:37 a.m.92 views

CVE-2023-6977

CVE-2023-6977 relates to Mlflow prior to 2.8.0 suffering a local file inclusion (path traversal) vulnerability. The Nuclei template specifies that an attacker could read sensitive files on the server and potentially modify data or perform unauthorized admin operations in context of the affected s...

10CVSS7.4AI score0.03924EPSS
CVE
CVE
added 2025/03/20 10:9 a.m.90 views

CVE-2024-8859

Mlflow/mlflow 2.15.1 contains a path traversal/local file read vulnerability when using the dbfs service: the URL is interpolated into the file protocol with only the path portion validated, enabling reading arbitrary server files when dbfs is mounted locally. Public sources (Nuclei template, OSV...

7.5CVSS7.4AI score0.02484EPSS
CVE
CVE
added 2024/04/16 12:0 a.m.89 views

CVE-2024-1483

Summary: CVE-2024-1483 is a path traversal vulnerability in mlflow/mlflow 2.9.2 that allows an attacker to access arbitrary server files. The issue stems from insufficient validation of user-supplied input in server handlers, enabling traversal via crafted HTTP POST requests using crafted artifac...

7.5CVSS7.4AI score0.02718EPSS
CVE
CVE
added 2023/05/17 12:0 a.m.88 views

CVE-2023-2780

CVE-2023-2780 affects the open-source project mlflow/mlflow prior to version 2.3.1. A path traversal flaw, described as a Local File Inclusion bypass via the payload "..\filename", can allow an attacker to read local files on the server. The Nuclei/NVD entries consistently reference this vulnerab...

9.8CVSS9.5AI score0.06311EPSS
CVE
CVE
added 2025/03/20 10:10 a.m.85 views

CVE-2025-1474

Summary: CVE-2025-1474 affects mlflow/mlflow 2.18, where an admin can create a new user account without a password, potentially enabling unauthorized access. The issue is fixed in version 2.19.0. Reports across multiple sources (Red Hat, CIRCL, GHSA, osv, NVD, OSV) corroborate the same descriptio...

5.5CVSS4AI score0.00336EPSS
CVE
CVE
added 2024/04/16 12:0 a.m.84 views

CVE-2024-1560

CVE-2024-1560 affects mlflow/mlflow prior to 2.9.2, in the artifact deletion path. A double decoding flaw in _delete_artifact_mlflow_artifacts and local_file_uri_to_path, via an extra unquote in delete_artifacts, allows path traversal and deletion of arbitrary server directories. Impact: high, wi...

8.1CVSS7.8AI score0.00856EPSS
CVE
CVE
added 2023/11/16 4:6 p.m.83 views

CVE-2023-6015

CVE-2023-6015 corresponds to MLflow where the server could be subjected to an arbitrary file upload. Multiple connected sources corroborate: the vulnerability is described as allowing arbitrary files to be PUT onto the MLflow server, with various third-party advisories and vulnerability databases...

10CVSS7.6AI score0.04408EPSS
CVE
CVE
added 2023/05/11 12:0 a.m.82 views

CVE-2023-30172

CVE-2023-30172 describes a directory traversal in the mlflow platform’s /get-artifact API, allowing an attacker to read arbitrary server files via the path parameter. Affected: mlflow up to v2.0.1. Underlying cause: directory traversal in the get-artifact endpoint. Impact is high on confidentiali...

7.5CVSS7.3AI score0.00996EPSS
CVE
CVE
added 2024/04/16 12:0 a.m.82 views

CVE-2024-1558

CVE-2024-1558 (mlflow/mlflow) describes a path traversal vulnerability in the function _create_model_version() in server/handlers.py due to improper validation of the source parameter. Attackers can bypass the check in _validate_non_local_source_contains_relative_paths(source) and gain arbitrary ...

7.5CVSS6.5AI score0.00859EPSS
Web
CVE
CVE
added 2024/04/16 12:0 a.m.81 views

CVE-2024-1594

CVE-2024-1594 is a path traversal vulnerability in mlflow/mlflow related to handling of artifact_location when creating an experiment. The connected OSV entry states that a fragment component # in the artifact URL can be used to bypass validation and allow reading arbitrary files on the server wi...

7.5CVSS6.2AI score0.00712EPSS
CVE
CVE
added 2023/12/15 12:0 a.m.80 views

CVE-2023-6831

mlflow/mlflow prior to 2.9.2 is exposed to a path traversal in artifact deletion. The root cause is a double decoding path handling: _delete_artifact_mlflow_artifacts and local_file_uri_to_path allow traversal due to an extra unquote operation in delete_artifacts. This can enable deletion of arbi...

8.1CVSS8AI score0.0329EPSS
CVE
CVE
added 2024/06/06 6:29 p.m.79 views

CVE-2024-2928

Summary: MLflow

7.5CVSS7.4AI score0.21847EPSS
CVE
CVE
added 2024/06/04 12:0 p.m.75 views

CVE-2024-37054

CVE-2024-37054 affects MLflow and stems from a deserialization issue in mlflow.pyfunc.load_model that processes PyFunc models, allowing a maliciously crafted model to trigger arbitrary code execution when loaded or interacted with. Public details (NVD entry) indicate versions 0.9.0 and newer are ...

8.8CVSS7.6AI score0.00697EPSS
Web
CVE
CVE
added 2024/04/16 12:0 a.m.74 views

CVE-2024-3573

The CVE-2024-3573 entry concerns mlflow/mlflow with a Local File Inclusion (LFI) caused by improper parsing of URIs in the is_local_uri logic. The issue misclassifies URIs with empty or file schemes as non-local, enabling an attacker to craft malicious model versions (source parameter) that bypas...

9.3CVSS9.2AI score0.00733EPSS
CVE
CVE
added 2024/04/16 12:0 a.m.73 views

CVE-2024-1593

This CVE describes a path traversal vulnerability in the mlflow/mlflow repository caused by improper handling of URL parameters. Attackers can smuggle path traversal sequences using the ';' character in URLs to manipulate the 'params' portion and access unauthorized files or directories. The repo...

7.5CVSS7.4AI score0.00695EPSS
CVE
CVE
added 2023/11/16 9:7 p.m.71 views

CVE-2023-6014

CVE-2023-6014 affects MLflow and describes an authentication bypass that lets an attacker arbitrarily create accounts via the MLflow server/UI without credentials. Documentation in connected sources confirms the vulnerability stems from bypassing MLflow’s authentication mechanism (basic auth path...

9.8CVSS9.5AI score0.01157EPSS
CVE
CVE
added 2024/06/04 11:59 a.m.69 views

CVE-2024-37052

The CVE-2024-37052 issue affects MLflow platforms running version 1.1.0 or newer. The root cause is deserialization of untrusted data during model handling, as described by multiple connected sources, including reports that an uploaded scikit-learn model can be crafted to trigger arbitrary code e...

8.8CVSS7.6AI score0.00618EPSS
CVE
CVE
added 2026/06/03 7:18 a.m.65 views

CVE-2026-4035

CVE-2026-4035 affects mlflow/mlflow versions before 3.11.0. The API for AI Gateway secrets allows the api_key field to contain $ENV_VAR references, which are resolved against the MLflow server environment at runtime. Attackers can exfiltrate server-side environment credentials (e.g., AWS_ACCESS_K...

9.1CVSS7.6AI score0.00435EPSS
CVE
CVE
added 2023/12/05 12:0 a.m.64 views

CVE-2023-43472

MLFlow before 2.8.1 is affected by CVE-2023-43472. A remote attacker can disclose sensitive information via a crafted request to the MLFlow REST API. Impact described in sources: access to sensitive information stored in MLFlow. Root cause: issue exists in MLFlow 2.8.1 and earlier as stated in th...

7.5CVSS7.1AI score0.36582EPSS
CVE
CVE
added 2023/12/19 1:41 a.m.64 views

CVE-2023-6940

CVE-2023-6940 is a command-injection vulnerability affecting mlflow where a single user interaction (e.g., loading a malicious config) can lead to full command execution on the host. The publicly documented root cause in at least one source is unsafe YAML/config rendering due to not sandboxing th...

9CVSS8.9AI score0.01219EPSS
CVE
CVE
added 2025/03/20 10:10 a.m.64 views

CVE-2025-1473

In MLflow (mlflow/mlflow), a CSRF vulnerability affects versions 2.17.0 to 2.20.1 in the Signup feature, allowing an attacker to create a new account and potentially perform unauthorized actions on behalf of the attacker’s account. The CVE-2025-1473 entry documents the flaw and its impact as Cros...

7.1CVSS5.5AI score0.00202EPSS
CVE
CVE
added 2024/06/06 6:8 p.m.61 views

CVE-2024-3099

CVE-2024-3099 affects mlflow/mlflow 2.11.1 and is caused by inadequate validation of model names, allowing URL-encoded names to be treated as distinct from their decoded counterparts. This enables an attacker to create multiple models with the same name, leading to DoS (an authenticated user may ...

5.4CVSS5.1AI score0.00442EPSS
CVE
CVE
added 2023/12/20 5:25 a.m.60 views

CVE-2023-6974

CVE-2023-6974 is a server-side request forgery (SSRF) affecting MLflow. The connected documents describe an issue where a malicious user can abuse redirects during artifact fetching to access internal HTTP(S) servers and, in the worst case, achieve remote code execution on the victim machine. The...

9.8CVSS9.4AI score0.01507EPSS
CVE
CVE
added 2023/08/01 12:0 a.m.57 views

CVE-2023-4033

CVE-2023-4033 : The connected documents confirm an OS Command Injection vulnerability affecting the project mlflow/mlflow prior to version 2.6.0 . The sources (OSV, GHSA, NVD, and related advisories) consistently describe it as an OS command injection issue in that repository/version range. The d...

8.8CVSS8AI score0.01195EPSS
CVE
CVE
added 2025/03/20 10:9 a.m.57 views

CVE-2024-6838

CVE-2024-6838 affects mlflow/mlflow v2.13.2, allowing creation or renaming of an experiment with an unbounded number of integers in the name and no limit on the artifact_location, leading to potential denial of service due to UI unresponsiveness (uncontrolled resource consumption). The vulnerabil...

5.3CVSS5.3AI score0.00615EPSS
CVE
CVE
added 2023/12/13 12:0 a.m.56 views

CVE-2023-6753

CVE-2023-6753 is a path traversal vulnerability in mlflow/mlflow prior to 2.9.2. Affected software: mlflow/mlflow. Root cause: path traversal allowing access to files beyond the intended directory. Impact per CVE metrics: Confidentiality, Integrity, and Availability high. Exploitation details and...

9.6CVSS8.7AI score0.01072EPSS
CVE
CVE
added 2023/12/12 4:5 a.m.52 views

CVE-2023-6709

CVE-2023-6709 affects mlflow/mlflow up to version 2.9.1 (prior to 2.9.2). The issue is improper neutralization of special elements used in a template engine (Jinja2), enabling template injection with potential arbitrary code execution. Affected component: mlflow/mlflow templates; root cause: inse...

10CVSS8.7AI score0.0093EPSS
CVE
CVE
added 2023/12/20 5:26 a.m.51 views

CVE-2023-6975

CVE-2023-6975 is described in the connected data as a path traversal vulnerability related to MLflow (BIT-MLFLOW-2023-6975 / GHSA ...), potentially allowing command execution and access to data and models. The supplied documents do not provide explicit affected versions or remediation details; no...

9.8CVSS9.6AI score0.02013EPSS
CVE
CVE
added 2026/03/31 2:25 p.m.51 views

CVE-2026-0596

The CWE/CVE describes a command-injection in mlflow/mlflow when serving a model with enable_mlserver=True. The vulnerability occurs because model_uri is embedded directly into a shell command executed via bash -c without sanitization, allowing shell metacharacters (e.g., $(), backticks) to enable...

9.6CVSS7.4AI score0.01328EPSS
Web
CVE
CVE
added 2024/06/04 12:1 p.m.44 views

CVE-2024-37056

CVE-2024-37056 affects the MLflow platform (versions 1.23.0 and newer) and involves unsafe deserialization of untrusted data. According to the sources, uploading a LightGBM scikit-learn model can be deserialized when run or loaded, enabling arbitrary code execution on the end user’s system. The p...

8.8CVSS7.6AI score0.00618EPSS
CVE
CVE
added 2023/12/20 5:30 a.m.42 views

CVE-2023-6976

CVE-2023-6976 is an Arbitrary File Write issue described across multiple sources (NVD, Red Hat, OSV, Veracode, GitHub advisories) affecting the server process’s ability to write files to arbitrary locations on the remote filesystem. Public descriptions consistently state the vulnerability enables...

8.8CVSS8.7AI score0.01008EPSS
CVE
CVE
added 2026/01/12 8:15 a.m.41 views

CVE-2025-14279

The CVE details a DNS rebinding vulnerability in MLflow up to version 3.4.0 caused by lack of Origin header validation in the MLflow REST server. The issue allows an attacker to bypass Same-Origin Policy and issue unauthorized requests to REST endpoints, enabling querying, updating, and deleting ...

8.1CVSS7.8AI score0.00193EPSS
CVE
CVE
added 2026/03/30 7:16 a.m.39 views

CVE-2025-15379

Summary: CVE-2025-15379 affects MLflow (model serving container initialization). In the function _install_model_dependencies_to_env(), when deploying with env_manager=LOCAL, dependency specs from the model artifact's python_env.yaml are interpolated into a shell command without sanitization, enab...

10CVSS7.5AI score0.01994EPSS
Total number of security vulnerabilities76