Mlflow Security Vulnerabilities and Issues — Mlflow CVE List | Vulners.com

Lucene search

K

LfprojectsMlflow

3 matches found

CVE•added 2023/11/16 4:15 p.m.•70 views

CVE-2023-6018

An attacker can overwrite any file on the server hosting MLflow without any authentication.

10CVSS9.5AI score0.88386EPSS

CVE•added 2023/11/16 9:15 p.m.•56 views

CVE-2023-6014

An attacker is able to arbitrarily create an account in MLflow bypassing any authentication requirment.

9.8CVSS9.5AI score0.00671EPSS

CVE•added 2023/11/16 4:15 p.m.•53 views

CVE-2023-6015

MLflow allowed arbitrary files to be PUT onto the server.

10CVSS7.6AI score0.00767EPSS