CVE-2025-14287
- EPSS 1.46%
- Veröffentlicht 15.03.2026 09:27:36
- Zuletzt bearbeitet 30.06.2026 03:16:43
A command injection vulnerability exists in mlflow/mlflow versions before v3.7.0, specifically in the `mlflow/sagemaker/__init__.py` file at lines 161-167. The vulnerability arises from the direct interpolation of user-supplied container image names ...
- EPSS 0.22%
- Veröffentlicht 02.02.2026 10:36:22
- Zuletzt bearbeitet 14.04.2026 14:57:42
In mlflow version 2.20.3, the temporary directory used for creating Python virtual environments is assigned insecure world-writable permissions (0o777). This vulnerability allows an attacker with write access to the `/tmp` directory to exploit a race...
CVE-2025-14279
- EPSS 0.19%
- Veröffentlicht 12.01.2026 08:15:58
- Zuletzt bearbeitet 14.04.2026 15:05:13
MLFlow versions up to and including 3.4.0 are vulnerable to DNS rebinding attacks due to a lack of Origin header validation in the MLFlow REST server. This vulnerability allows malicious websites to bypass Same-Origin Policy protections and execute u...
CVE-2025-11200
- EPSS 1.49%
- Veröffentlicht 29.10.2025 19:42:03
- Zuletzt bearbeitet 31.12.2025 01:06:20
MLflow Weak Password Requirements Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of MLflow. Authentication is not required to exploit this vulnerability. The specifi...
CVE-2025-11201
- EPSS 27.13%
- Veröffentlicht 29.10.2025 19:37:10
- Zuletzt bearbeitet 04.11.2025 21:22:41
MLflow Tracking Server Model Creation Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MLflow Tracking Server. Authentication is not required to...
CVE-2025-52967
- EPSS 0.37%
- Veröffentlicht 23.06.2025 00:00:00
- Zuletzt bearbeitet 15.04.2026 00:35:42
gateway_proxy_handler in MLflow before 3.1.0 lacks gateway_path validation.
CVE-2025-0453
- EPSS 0.52%
- Veröffentlicht 20.03.2025 10:11:02
- Zuletzt bearbeitet 15.10.2025 13:16:00
In mlflow/mlflow version 2.17.2, the `/graphql` endpoint is vulnerable to a denial of service attack. An attacker can create large batches of queries that repeatedly request all runs from a given experiment. This can tie up all the workers allocated ...
CVE-2025-1474
- EPSS 0.34%
- Veröffentlicht 20.03.2025 10:10:20
- Zuletzt bearbeitet 27.03.2025 15:36:42
In mlflow/mlflow version 2.18, an admin is able to create a new user account without setting a password. This vulnerability could lead to security risks, as accounts without passwords may be susceptible to unauthorized access. Additionally, this issu...
CVE-2025-1473
- EPSS 0.2%
- Veröffentlicht 20.03.2025 10:10:20
- Zuletzt bearbeitet 05.08.2025 17:05:22
A Cross-Site Request Forgery (CSRF) vulnerability exists in the Signup feature of mlflow/mlflow versions 2.17.0 to 2.20.1. This vulnerability allows an attacker to create a new account, which may be used to perform unauthorized actions on behalf of t...
CVE-2024-8859
- EPSS 2.48%
- Veröffentlicht 20.03.2025 10:09:53
- Zuletzt bearbeitet 05.08.2025 16:15:20
A path traversal vulnerability exists in mlflow/mlflow version 2.15.1. When users configure and use the dbfs service, concatenating the URL directly into the file protocol results in an arbitrary file read vulnerability. This issue occurs because onl...