Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:pypi/mlflow@0.9.1
Typepypi
Namespace
Namemlflow
Version0.9.1
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version3.11.0
Latest_non_vulnerable_version3.11.1
Affected_by_vulnerabilities
0
url VCID-1bya-32tr-jfhz
vulnerability_id VCID-1bya-32tr-jfhz
summary A flaw has been found in MLflow up to 3.10.0. This issue affects the function mlflow.data.digest_utils of the file mlflow/data/digest_utils.py of the component Dataset Digest Computation. This manipulation causes use of weak hash. It is possible to launch the attack on the local host. The attack is considered to have high complexity. The exploitability is assessed as difficult. The exploit has been published and may be used. The project was informed of the problem early through a pull request but has not reacted yet.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10803.json
reference_id
reference_type
scores
0
value 2.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10803.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-10803
reference_id
reference_type
scores
0
value 6e-05
scoring_system epss
scoring_elements 0.00431
published_at 2026-06-12T12:55:00Z
1
value 6e-05
scoring_system epss
scoring_elements 0.00432
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-10803
2
reference_url https://github.com/mlflow/mlflow/issues/22419
reference_id 22419
reference_type
scores
0
value 2.4
scoring_system cvssv2
scoring_elements AV:L/AC:H/Au:S/C:N/I:P/A:P/E:POC/RL:ND/RC:UR
1
value 3.6
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L/E:P/RL:X/RC:R
2
value 3.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L/E:P/RL:X/RC:R
3
value 1.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
4
value 2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:P
5
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-04T12:55:46Z/
url https://github.com/mlflow/mlflow/issues/22419
3
reference_url https://github.com/mlflow/mlflow/pull/22420
reference_id 22420
reference_type
scores
0
value 2.4
scoring_system cvssv2
scoring_elements AV:L/AC:H/Au:S/C:N/I:P/A:P/E:POC/RL:ND/RC:UR
1
value 3.6
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L/E:P/RL:X/RC:R
2
value 3.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L/E:P/RL:X/RC:R
3
value 1.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
4
value 2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:P
5
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-04T12:55:46Z/
url https://github.com/mlflow/mlflow/pull/22420
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2484755
reference_id 2484755
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2484755
5
reference_url https://vuldb.com/vuln/368252
reference_id 368252
reference_type
scores
0
value 2.4
scoring_system cvssv2
scoring_elements AV:L/AC:H/Au:S/C:N/I:P/A:P/E:POC/RL:ND/RC:UR
1
value 3.6
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L/E:P/RL:X/RC:R
2
value 3.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L/E:P/RL:X/RC:R
3
value 1.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
4
value 2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:P
5
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-04T12:55:46Z/
url https://vuldb.com/vuln/368252
6
reference_url https://vuldb.com/submit/831462
reference_id 831462
reference_type
scores
0
value 2.4
scoring_system cvssv2
scoring_elements AV:L/AC:H/Au:S/C:N/I:P/A:P/E:POC/RL:ND/RC:UR
1
value 3.6
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L/E:P/RL:X/RC:R
2
value 3.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L/E:P/RL:X/RC:R
3
value 1.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
4
value 2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:P
5
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-04T12:55:46Z/
url https://vuldb.com/submit/831462
7
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mlflow:mlflow:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:mlflow:mlflow:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mlflow:mlflow:*:*:*:*:*:*:*:*
8
reference_url https://vuldb.com/vuln/368252/cti
reference_id cti
reference_type
scores
0
value 2.4
scoring_system cvssv2
scoring_elements AV:L/AC:H/Au:S/C:N/I:P/A:P/E:POC/RL:ND/RC:UR
1
value 3.6
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L/E:P/RL:X/RC:R
2
value 3.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L/E:P/RL:X/RC:R
3
value 1.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
4
value 2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:P
5
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-04T12:55:46Z/
url https://vuldb.com/vuln/368252/cti
9
reference_url https://vuldb.com/cve/CVE-2026-10803
reference_id CVE-2026-10803
reference_type
scores
0
value 2.4
scoring_system cvssv2
scoring_elements AV:L/AC:H/Au:S/C:N/I:P/A:P/E:POC/RL:ND/RC:UR
1
value 3.6
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L/E:P/RL:X/RC:R
2
value 3.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L/E:P/RL:X/RC:R
3
value 1.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
4
value 2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:P
5
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-04T12:55:46Z/
url https://vuldb.com/cve/CVE-2026-10803
10
reference_url https://github.com/mlflow/mlflow/
reference_id mlflow
reference_type
scores
0
value 2.4
scoring_system cvssv2
scoring_elements AV:L/AC:H/Au:S/C:N/I:P/A:P/E:POC/RL:ND/RC:UR
1
value 3.6
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L/E:P/RL:X/RC:R
2
value 3.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L/E:P/RL:X/RC:R
3
value 1.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
4
value 2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:P
5
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-04T12:55:46Z/
url https://github.com/mlflow/mlflow/
fixed_packages
0
url pkg:pypi/mlflow@3.10.1
purl pkg:pypi/mlflow@3.10.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24ct-fu3q-gbgj
1
vulnerability VCID-fxtg-yezw-hfhr
2
vulnerability VCID-kqsy-qu8j-8ugj
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@3.10.1
aliases BIT-mlflow-2026-10803, CVE-2026-10803, PYSEC-2026-195
risk_score 1.6
exploitability 0.5
weighted_severity 3.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1bya-32tr-jfhz
1
url VCID-1sau-auws-mfcs
vulnerability_id VCID-1sau-auws-mfcs
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-6975
reference_id
reference_type
scores
0
value 0.01542
scoring_system epss
scoring_elements 0.81778
published_at 2026-06-11T12:55:00Z
1
value 0.01542
scoring_system epss
scoring_elements 0.81839
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-6975
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://github.com/mlflow/mlflow/commit/b9ab9ed77e1deda9697fe472fb1079fd428149ee
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/b9ab9ed77e1deda9697fe472fb1079fd428149ee
3
reference_url https://huntr.com/bounties/029a3824-cee3-4cf1-b260-7138aa539b85
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://huntr.com/bounties/029a3824-cee3-4cf1-b260-7138aa539b85
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-6975
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-6975
5
reference_url https://github.com/advisories/GHSA-hh8p-p8mp-gqhm
reference_id GHSA-hh8p-p8mp-gqhm
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-hh8p-p8mp-gqhm
fixed_packages
0
url pkg:pypi/mlflow@2.9.2
purl pkg:pypi/mlflow@2.9.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2nft-dcgb-53c4
4
vulnerability VCID-3cb8-9ms7-yyfa
5
vulnerability VCID-3t2e-xs79-u7cd
6
vulnerability VCID-4jqc-vp49-2ybf
7
vulnerability VCID-4jya-uh8s-4ycv
8
vulnerability VCID-5qjx-6dd1-kbcw
9
vulnerability VCID-6dra-6783-pqg1
10
vulnerability VCID-6mc2-24nz-yqb4
11
vulnerability VCID-6twj-wz2n-eyhf
12
vulnerability VCID-7fb9-mjjp-xfax
13
vulnerability VCID-7hh6-6gv3-tyeg
14
vulnerability VCID-7ykf-b93e-w7am
15
vulnerability VCID-8gmy-kvc8-9fh6
16
vulnerability VCID-96az-gdtg-aka8
17
vulnerability VCID-97xj-trtn-g7ah
18
vulnerability VCID-9mak-nkua-3uhr
19
vulnerability VCID-ag97-535x-ruha
20
vulnerability VCID-axte-ftrh-4bb7
21
vulnerability VCID-c27j-436j-jucx
22
vulnerability VCID-ea5n-qghr-vffw
23
vulnerability VCID-fhwc-a97g-qbc7
24
vulnerability VCID-fxtg-yezw-hfhr
25
vulnerability VCID-juhn-rya8-ayej
26
vulnerability VCID-k79p-ju8g-9bhe
27
vulnerability VCID-kpds-34mt-b3hf
28
vulnerability VCID-kqsy-qu8j-8ugj
29
vulnerability VCID-m4yj-ast4-e3eh
30
vulnerability VCID-p667-62d7-vfgv
31
vulnerability VCID-r8c4-p83a-byf5
32
vulnerability VCID-s28h-stan-bqev
33
vulnerability VCID-scm3-63j1-tkf2
34
vulnerability VCID-sts1-rpu2-y7dv
35
vulnerability VCID-tc68-59mt-4qh7
36
vulnerability VCID-tnps-h89q-a7hj
37
vulnerability VCID-tnup-6wcs-pybk
38
vulnerability VCID-ttwk-xeub-ebfy
39
vulnerability VCID-u6y9-6vau-nkde
40
vulnerability VCID-u8jf-pjxj-8fey
41
vulnerability VCID-updk-2xum-9bcb
42
vulnerability VCID-w5et-zcp1-zfdb
43
vulnerability VCID-wphf-gk61-8ube
44
vulnerability VCID-xdur-8vs8-jfcy
45
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.9.2
aliases CVE-2023-6975, GHSA-hh8p-p8mp-gqhm
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1sau-auws-mfcs
2
url VCID-24ct-fu3q-gbgj
vulnerability_id VCID-24ct-fu3q-gbgj
summary In mlflow/mlflow, the FastAPI job endpoints under `/ajax-api/3.0/jobs/*` are not protected by authentication or authorization when the `basic-auth` app is enabled. This vulnerability affects the latest version of the repository. If job execution is enabled (`MLFLOW_SERVER_ENABLE_JOB_EXECUTION=true`) and any job function is allowlisted, any network client can submit, read, search, and cancel jobs without credentials, bypassing basic-auth entirely. This can lead to unauthenticated remote code execution if allowed jobs perform privileged actions such as shell execution or filesystem changes. Even if jobs are deemed safe, this still constitutes an authentication bypass, potentially resulting in job spam, denial of service (DoS), or data exposure in job results.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-0545.json
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-0545.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-0545
reference_id
reference_type
scores
0
value 0.11241
scoring_system epss
scoring_elements 0.93703
published_at 2026-06-12T12:55:00Z
1
value 0.11241
scoring_system epss
scoring_elements 0.93683
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-0545
2
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-0545
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-0545
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2454889
reference_id 2454889
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2454889
5
reference_url https://huntr.com/bounties/b2e5b028-9541-4d29-8703-a76f1a3734d8
reference_id b2e5b028-9541-4d29-8703-a76f1a3734d8
reference_type
scores
0
value 9.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-03T17:48:47Z/
url https://huntr.com/bounties/b2e5b028-9541-4d29-8703-a76f1a3734d8
6
reference_url https://github.com/advisories/GHSA-7qhf-v65m-g5f3
reference_id GHSA-7qhf-v65m-g5f3
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-7qhf-v65m-g5f3
fixed_packages
0
url pkg:pypi/mlflow@3.11.0rc0
purl pkg:pypi/mlflow@3.11.0rc0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-fxtg-yezw-hfhr
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@3.11.0rc0
aliases CVE-2026-0545, GHSA-7qhf-v65m-g5f3
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-24ct-fu3q-gbgj
3
url VCID-2hc7-ant5-qkcu
vulnerability_id VCID-2hc7-ant5-qkcu
summary Path Traversal: '\..\filename' in GitHub repository mlflow/mlflow prior to 2.9.2.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-6831
reference_id
reference_type
scores
0
value 0.73982
scoring_system epss
scoring_elements 0.98851
published_at 2026-06-12T12:55:00Z
1
value 0.73982
scoring_system epss
scoring_elements 0.98847
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-6831
1
reference_url https://github.com/advisories/GHSA-554w-xh4j-8w64
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
1
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-554w-xh4j-8w64
2
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
3
reference_url https://github.com/mlflow/mlflow/commit/1da75dfcecd4d169e34809ade55748384e8af6c1
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:H
1
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/1da75dfcecd4d169e34809ade55748384e8af6c1
4
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2023-253.yaml
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2023-253.yaml
5
reference_url https://huntr.com/bounties/0acdd745-0167-4912-9d5c-02035fe5b314
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:H
1
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://huntr.com/bounties/0acdd745-0167-4912-9d5c-02035fe5b314
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-6831
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-6831
fixed_packages
0
url pkg:pypi/mlflow@2.9.2
purl pkg:pypi/mlflow@2.9.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2nft-dcgb-53c4
4
vulnerability VCID-3cb8-9ms7-yyfa
5
vulnerability VCID-3t2e-xs79-u7cd
6
vulnerability VCID-4jqc-vp49-2ybf
7
vulnerability VCID-4jya-uh8s-4ycv
8
vulnerability VCID-5qjx-6dd1-kbcw
9
vulnerability VCID-6dra-6783-pqg1
10
vulnerability VCID-6mc2-24nz-yqb4
11
vulnerability VCID-6twj-wz2n-eyhf
12
vulnerability VCID-7fb9-mjjp-xfax
13
vulnerability VCID-7hh6-6gv3-tyeg
14
vulnerability VCID-7ykf-b93e-w7am
15
vulnerability VCID-8gmy-kvc8-9fh6
16
vulnerability VCID-96az-gdtg-aka8
17
vulnerability VCID-97xj-trtn-g7ah
18
vulnerability VCID-9mak-nkua-3uhr
19
vulnerability VCID-ag97-535x-ruha
20
vulnerability VCID-axte-ftrh-4bb7
21
vulnerability VCID-c27j-436j-jucx
22
vulnerability VCID-ea5n-qghr-vffw
23
vulnerability VCID-fhwc-a97g-qbc7
24
vulnerability VCID-fxtg-yezw-hfhr
25
vulnerability VCID-juhn-rya8-ayej
26
vulnerability VCID-k79p-ju8g-9bhe
27
vulnerability VCID-kpds-34mt-b3hf
28
vulnerability VCID-kqsy-qu8j-8ugj
29
vulnerability VCID-m4yj-ast4-e3eh
30
vulnerability VCID-p667-62d7-vfgv
31
vulnerability VCID-r8c4-p83a-byf5
32
vulnerability VCID-s28h-stan-bqev
33
vulnerability VCID-scm3-63j1-tkf2
34
vulnerability VCID-sts1-rpu2-y7dv
35
vulnerability VCID-tc68-59mt-4qh7
36
vulnerability VCID-tnps-h89q-a7hj
37
vulnerability VCID-tnup-6wcs-pybk
38
vulnerability VCID-ttwk-xeub-ebfy
39
vulnerability VCID-u6y9-6vau-nkde
40
vulnerability VCID-u8jf-pjxj-8fey
41
vulnerability VCID-updk-2xum-9bcb
42
vulnerability VCID-w5et-zcp1-zfdb
43
vulnerability VCID-wphf-gk61-8ube
44
vulnerability VCID-xdur-8vs8-jfcy
45
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.9.2
aliases BIT-mlflow-2023-6831, CVE-2023-6831, GHSA-554w-xh4j-8w64, PYSEC-2023-253
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2hc7-ant5-qkcu
4
url VCID-2nft-dcgb-53c4
vulnerability_id VCID-2nft-dcgb-53c4
summary Deserialization of untrusted data can occur in versions of the MLflow platform running version 0.9.0 or newer, enabling a maliciously uploaded PyFunc model to run arbitrary code on an end user’s system when interacted with.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-37054
reference_id
reference_type
scores
0
value 0.00211
scoring_system epss
scoring_elements 0.43717
published_at 2026-06-11T12:55:00Z
1
value 0.00211
scoring_system epss
scoring_elements 0.43873
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-37054
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-37054
reference_id CVE-2024-37054
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-37054
3
reference_url https://github.com/advisories/GHSA-ghv6-9r9j-wh4j
reference_id GHSA-ghv6-9r9j-wh4j
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-ghv6-9r9j-wh4j
4
reference_url https://hiddenlayer.com/sai-security-advisory/mlflow-june2024
reference_id mlflow-june2024
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-06T15:01:38Z/
url https://hiddenlayer.com/sai-security-advisory/mlflow-june2024
fixed_packages
aliases CVE-2024-37054, GHSA-ghv6-9r9j-wh4j
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2nft-dcgb-53c4
5
url VCID-2pjc-1kqa-1ygp
vulnerability_id VCID-2pjc-1kqa-1ygp
summary A vulnerability in mlflow/mlflow version 8.2.1 allows for remote code execution due to improper neutralization of special elements used in an OS command ('Command Injection') within the `mlflow.data.http_dataset_source.py` module. Specifically, when loading a dataset from a source URL with an HTTP scheme, the filename extracted from the `Content-Disposition` header or the URL path is used to generate the final file path without proper sanitization. This flaw enables an attacker to control the file path fully by utilizing path traversal or absolute path techniques, such as '../../tmp/poc.txt' or '/tmp/poc.txt', leading to arbitrary file write. Exploiting this vulnerability could allow a malicious user to execute commands on the vulnerable machine, potentially gaining access to data and model information. The issue is fixed in version 2.9.0.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-0520
reference_id
reference_type
scores
0
value 0.04877
scoring_system epss
scoring_elements 0.89799
published_at 2026-06-11T12:55:00Z
1
value 0.04877
scoring_system epss
scoring_elements 0.89833
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-0520
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2024-239.yaml
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2024-239.yaml
3
reference_url https://github.com/mlflow/mlflow/commit/400c226953b4568f4361bc0a0c223511652c2b9d
reference_id 400c226953b4568f4361bc0a0c223511652c2b9d
reference_type
scores
0
value 10
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
2
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
3
value CRITICAL
scoring_system generic_textual
scoring_elements
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-06T20:17:45Z/
url https://github.com/mlflow/mlflow/commit/400c226953b4568f4361bc0a0c223511652c2b9d
4
reference_url https://huntr.com/bounties/93e470d7-b6f0-409b-af63-49d3e2a26dbc
reference_id 93e470d7-b6f0-409b-af63-49d3e2a26dbc
reference_type
scores
0
value 10
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
2
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
3
value CRITICAL
scoring_system generic_textual
scoring_elements
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-06T20:17:45Z/
url https://huntr.com/bounties/93e470d7-b6f0-409b-af63-49d3e2a26dbc
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-0520
reference_id CVE-2024-0520
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-0520
6
reference_url https://github.com/advisories/GHSA-5q6c-ffvg-xcm9
reference_id GHSA-5q6c-ffvg-xcm9
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-5q6c-ffvg-xcm9
fixed_packages
0
url pkg:pypi/mlflow@2.9.0
purl pkg:pypi/mlflow@2.9.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-1sau-auws-mfcs
3
vulnerability VCID-24ct-fu3q-gbgj
4
vulnerability VCID-2hc7-ant5-qkcu
5
vulnerability VCID-2nft-dcgb-53c4
6
vulnerability VCID-2ujt-4vpx-6khr
7
vulnerability VCID-34mw-41t1-m7a9
8
vulnerability VCID-3cb8-9ms7-yyfa
9
vulnerability VCID-3t2e-xs79-u7cd
10
vulnerability VCID-3ugt-4ygk-n3b1
11
vulnerability VCID-4jqc-vp49-2ybf
12
vulnerability VCID-4jya-uh8s-4ycv
13
vulnerability VCID-5qjx-6dd1-kbcw
14
vulnerability VCID-6dra-6783-pqg1
15
vulnerability VCID-6mc2-24nz-yqb4
16
vulnerability VCID-6twj-wz2n-eyhf
17
vulnerability VCID-7fb9-mjjp-xfax
18
vulnerability VCID-7hh6-6gv3-tyeg
19
vulnerability VCID-7ykf-b93e-w7am
20
vulnerability VCID-8gmy-kvc8-9fh6
21
vulnerability VCID-96az-gdtg-aka8
22
vulnerability VCID-97xj-trtn-g7ah
23
vulnerability VCID-9mak-nkua-3uhr
24
vulnerability VCID-9prk-73hp-e3dc
25
vulnerability VCID-ag97-535x-ruha
26
vulnerability VCID-axte-ftrh-4bb7
27
vulnerability VCID-c27j-436j-jucx
28
vulnerability VCID-ea5n-qghr-vffw
29
vulnerability VCID-fhwc-a97g-qbc7
30
vulnerability VCID-fxtg-yezw-hfhr
31
vulnerability VCID-juhn-rya8-ayej
32
vulnerability VCID-k79p-ju8g-9bhe
33
vulnerability VCID-kpds-34mt-b3hf
34
vulnerability VCID-kqsy-qu8j-8ugj
35
vulnerability VCID-m4yj-ast4-e3eh
36
vulnerability VCID-p667-62d7-vfgv
37
vulnerability VCID-r8c4-p83a-byf5
38
vulnerability VCID-s28h-stan-bqev
39
vulnerability VCID-scm3-63j1-tkf2
40
vulnerability VCID-sts1-rpu2-y7dv
41
vulnerability VCID-tc68-59mt-4qh7
42
vulnerability VCID-tnps-h89q-a7hj
43
vulnerability VCID-tnup-6wcs-pybk
44
vulnerability VCID-ttwk-xeub-ebfy
45
vulnerability VCID-u6y9-6vau-nkde
46
vulnerability VCID-u8jf-pjxj-8fey
47
vulnerability VCID-updk-2xum-9bcb
48
vulnerability VCID-w5et-zcp1-zfdb
49
vulnerability VCID-wphf-gk61-8ube
50
vulnerability VCID-xdur-8vs8-jfcy
51
vulnerability VCID-xjux-g847-hyb8
52
vulnerability VCID-yrt1-6bhw-nkgk
53
vulnerability VCID-zgvy-31uv-6yax
54
vulnerability VCID-zsz1-bnbj-dkhy
55
vulnerability VCID-zz7z-56e2-nfbh
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.9.0
aliases BIT-mlflow-2024-0520, CVE-2024-0520, GHSA-5q6c-ffvg-xcm9, PYSEC-2024-239
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2pjc-1kqa-1ygp
6
url VCID-2ujt-4vpx-6khr
vulnerability_id VCID-2ujt-4vpx-6khr
summary A reflected Cross-Site Scripting (XSS) vulnerability exists in the mlflow/mlflow repository, specifically within the handling of the Content-Type header in POST requests. An attacker can inject malicious JavaScript code into the Content-Type header, which is then improperly reflected back to the user without adequate sanitization or escaping, leading to arbitrary JavaScript execution in the context of the victim's browser. The vulnerability is present in the mlflow/server/auth/__init__.py file, where the user-supplied Content-Type header is directly injected into a Python formatted string and returned to the user, facilitating the XSS attack.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-6568
reference_id
reference_type
scores
0
value 0.33351
scoring_system epss
scoring_elements 0.97037
published_at 2026-06-12T12:55:00Z
1
value 0.33351
scoring_system epss
scoring_elements 0.97028
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-6568
1
reference_url https://github.com/advisories/GHSA-vwhf-3v6x-wff8
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-vwhf-3v6x-wff8
2
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
3
reference_url https://github.com/mlflow/mlflow/commit/28ff3f94994941e038f2172c6484b65dc4db6ca1
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/28ff3f94994941e038f2172c6484b65dc4db6ca1
4
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2023-260.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2023-260.yaml
5
reference_url https://huntr.com/bounties/816bdaaa-8153-4732-951e-b0d92fddf709
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://huntr.com/bounties/816bdaaa-8153-4732-951e-b0d92fddf709
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-6568
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-6568
fixed_packages
0
url pkg:pypi/mlflow@2.9.0
purl pkg:pypi/mlflow@2.9.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-1sau-auws-mfcs
3
vulnerability VCID-24ct-fu3q-gbgj
4
vulnerability VCID-2hc7-ant5-qkcu
5
vulnerability VCID-2nft-dcgb-53c4
6
vulnerability VCID-2ujt-4vpx-6khr
7
vulnerability VCID-34mw-41t1-m7a9
8
vulnerability VCID-3cb8-9ms7-yyfa
9
vulnerability VCID-3t2e-xs79-u7cd
10
vulnerability VCID-3ugt-4ygk-n3b1
11
vulnerability VCID-4jqc-vp49-2ybf
12
vulnerability VCID-4jya-uh8s-4ycv
13
vulnerability VCID-5qjx-6dd1-kbcw
14
vulnerability VCID-6dra-6783-pqg1
15
vulnerability VCID-6mc2-24nz-yqb4
16
vulnerability VCID-6twj-wz2n-eyhf
17
vulnerability VCID-7fb9-mjjp-xfax
18
vulnerability VCID-7hh6-6gv3-tyeg
19
vulnerability VCID-7ykf-b93e-w7am
20
vulnerability VCID-8gmy-kvc8-9fh6
21
vulnerability VCID-96az-gdtg-aka8
22
vulnerability VCID-97xj-trtn-g7ah
23
vulnerability VCID-9mak-nkua-3uhr
24
vulnerability VCID-9prk-73hp-e3dc
25
vulnerability VCID-ag97-535x-ruha
26
vulnerability VCID-axte-ftrh-4bb7
27
vulnerability VCID-c27j-436j-jucx
28
vulnerability VCID-ea5n-qghr-vffw
29
vulnerability VCID-fhwc-a97g-qbc7
30
vulnerability VCID-fxtg-yezw-hfhr
31
vulnerability VCID-juhn-rya8-ayej
32
vulnerability VCID-k79p-ju8g-9bhe
33
vulnerability VCID-kpds-34mt-b3hf
34
vulnerability VCID-kqsy-qu8j-8ugj
35
vulnerability VCID-m4yj-ast4-e3eh
36
vulnerability VCID-p667-62d7-vfgv
37
vulnerability VCID-r8c4-p83a-byf5
38
vulnerability VCID-s28h-stan-bqev
39
vulnerability VCID-scm3-63j1-tkf2
40
vulnerability VCID-sts1-rpu2-y7dv
41
vulnerability VCID-tc68-59mt-4qh7
42
vulnerability VCID-tnps-h89q-a7hj
43
vulnerability VCID-tnup-6wcs-pybk
44
vulnerability VCID-ttwk-xeub-ebfy
45
vulnerability VCID-u6y9-6vau-nkde
46
vulnerability VCID-u8jf-pjxj-8fey
47
vulnerability VCID-updk-2xum-9bcb
48
vulnerability VCID-w5et-zcp1-zfdb
49
vulnerability VCID-wphf-gk61-8ube
50
vulnerability VCID-xdur-8vs8-jfcy
51
vulnerability VCID-xjux-g847-hyb8
52
vulnerability VCID-yrt1-6bhw-nkgk
53
vulnerability VCID-zgvy-31uv-6yax
54
vulnerability VCID-zsz1-bnbj-dkhy
55
vulnerability VCID-zz7z-56e2-nfbh
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.9.0
1
url pkg:pypi/mlflow@2.9.1
purl pkg:pypi/mlflow@2.9.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-1sau-auws-mfcs
3
vulnerability VCID-24ct-fu3q-gbgj
4
vulnerability VCID-2hc7-ant5-qkcu
5
vulnerability VCID-2nft-dcgb-53c4
6
vulnerability VCID-34mw-41t1-m7a9
7
vulnerability VCID-3cb8-9ms7-yyfa
8
vulnerability VCID-3t2e-xs79-u7cd
9
vulnerability VCID-3ugt-4ygk-n3b1
10
vulnerability VCID-4jqc-vp49-2ybf
11
vulnerability VCID-4jya-uh8s-4ycv
12
vulnerability VCID-5qjx-6dd1-kbcw
13
vulnerability VCID-6dra-6783-pqg1
14
vulnerability VCID-6mc2-24nz-yqb4
15
vulnerability VCID-6twj-wz2n-eyhf
16
vulnerability VCID-7fb9-mjjp-xfax
17
vulnerability VCID-7hh6-6gv3-tyeg
18
vulnerability VCID-7ykf-b93e-w7am
19
vulnerability VCID-8gmy-kvc8-9fh6
20
vulnerability VCID-96az-gdtg-aka8
21
vulnerability VCID-97xj-trtn-g7ah
22
vulnerability VCID-9mak-nkua-3uhr
23
vulnerability VCID-9prk-73hp-e3dc
24
vulnerability VCID-ag97-535x-ruha
25
vulnerability VCID-axte-ftrh-4bb7
26
vulnerability VCID-c27j-436j-jucx
27
vulnerability VCID-ea5n-qghr-vffw
28
vulnerability VCID-fhwc-a97g-qbc7
29
vulnerability VCID-fxtg-yezw-hfhr
30
vulnerability VCID-juhn-rya8-ayej
31
vulnerability VCID-k79p-ju8g-9bhe
32
vulnerability VCID-kpds-34mt-b3hf
33
vulnerability VCID-kqsy-qu8j-8ugj
34
vulnerability VCID-m4yj-ast4-e3eh
35
vulnerability VCID-p667-62d7-vfgv
36
vulnerability VCID-r8c4-p83a-byf5
37
vulnerability VCID-s28h-stan-bqev
38
vulnerability VCID-scm3-63j1-tkf2
39
vulnerability VCID-sts1-rpu2-y7dv
40
vulnerability VCID-tc68-59mt-4qh7
41
vulnerability VCID-tnps-h89q-a7hj
42
vulnerability VCID-tnup-6wcs-pybk
43
vulnerability VCID-ttwk-xeub-ebfy
44
vulnerability VCID-u6y9-6vau-nkde
45
vulnerability VCID-u8jf-pjxj-8fey
46
vulnerability VCID-updk-2xum-9bcb
47
vulnerability VCID-w5et-zcp1-zfdb
48
vulnerability VCID-wphf-gk61-8ube
49
vulnerability VCID-xdur-8vs8-jfcy
50
vulnerability VCID-xjux-g847-hyb8
51
vulnerability VCID-yrt1-6bhw-nkgk
52
vulnerability VCID-zgvy-31uv-6yax
53
vulnerability VCID-zsz1-bnbj-dkhy
54
vulnerability VCID-zz7z-56e2-nfbh
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.9.1
aliases BIT-mlflow-2023-6568, CVE-2023-6568, GHSA-vwhf-3v6x-wff8, PYSEC-2023-260
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2ujt-4vpx-6khr
7
url VCID-34mw-41t1-m7a9
vulnerability_id VCID-34mw-41t1-m7a9
summary Path Traversal: '\..\filename' in GitHub repository mlflow/mlflow prior to 2.9.2.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-6909
reference_id
reference_type
scores
0
value 0.85715
scoring_system epss
scoring_elements 0.99395
published_at 2026-06-11T12:55:00Z
1
value 0.85715
scoring_system epss
scoring_elements 0.99397
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-6909
1
reference_url https://github.com/advisories/GHSA-5r3q-93q3-f978
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-5r3q-93q3-f978
2
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
3
reference_url https://github.com/mlflow/mlflow/commit/1da75dfcecd4d169e34809ade55748384e8af6c1
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/1da75dfcecd4d169e34809ade55748384e8af6c1
4
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2023-252.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2023-252.yaml
5
reference_url https://huntr.com/bounties/11209efb-0f84-482f-add0-587ea6b7e850
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://huntr.com/bounties/11209efb-0f84-482f-add0-587ea6b7e850
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-6909
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-6909
fixed_packages
0
url pkg:pypi/mlflow@2.9.2
purl pkg:pypi/mlflow@2.9.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2nft-dcgb-53c4
4
vulnerability VCID-3cb8-9ms7-yyfa
5
vulnerability VCID-3t2e-xs79-u7cd
6
vulnerability VCID-4jqc-vp49-2ybf
7
vulnerability VCID-4jya-uh8s-4ycv
8
vulnerability VCID-5qjx-6dd1-kbcw
9
vulnerability VCID-6dra-6783-pqg1
10
vulnerability VCID-6mc2-24nz-yqb4
11
vulnerability VCID-6twj-wz2n-eyhf
12
vulnerability VCID-7fb9-mjjp-xfax
13
vulnerability VCID-7hh6-6gv3-tyeg
14
vulnerability VCID-7ykf-b93e-w7am
15
vulnerability VCID-8gmy-kvc8-9fh6
16
vulnerability VCID-96az-gdtg-aka8
17
vulnerability VCID-97xj-trtn-g7ah
18
vulnerability VCID-9mak-nkua-3uhr
19
vulnerability VCID-ag97-535x-ruha
20
vulnerability VCID-axte-ftrh-4bb7
21
vulnerability VCID-c27j-436j-jucx
22
vulnerability VCID-ea5n-qghr-vffw
23
vulnerability VCID-fhwc-a97g-qbc7
24
vulnerability VCID-fxtg-yezw-hfhr
25
vulnerability VCID-juhn-rya8-ayej
26
vulnerability VCID-k79p-ju8g-9bhe
27
vulnerability VCID-kpds-34mt-b3hf
28
vulnerability VCID-kqsy-qu8j-8ugj
29
vulnerability VCID-m4yj-ast4-e3eh
30
vulnerability VCID-p667-62d7-vfgv
31
vulnerability VCID-r8c4-p83a-byf5
32
vulnerability VCID-s28h-stan-bqev
33
vulnerability VCID-scm3-63j1-tkf2
34
vulnerability VCID-sts1-rpu2-y7dv
35
vulnerability VCID-tc68-59mt-4qh7
36
vulnerability VCID-tnps-h89q-a7hj
37
vulnerability VCID-tnup-6wcs-pybk
38
vulnerability VCID-ttwk-xeub-ebfy
39
vulnerability VCID-u6y9-6vau-nkde
40
vulnerability VCID-u8jf-pjxj-8fey
41
vulnerability VCID-updk-2xum-9bcb
42
vulnerability VCID-w5et-zcp1-zfdb
43
vulnerability VCID-wphf-gk61-8ube
44
vulnerability VCID-xdur-8vs8-jfcy
45
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.9.2
aliases BIT-mlflow-2023-6909, CVE-2023-6909, GHSA-5r3q-93q3-f978, PYSEC-2023-252
risk_score 10.0
exploitability 2.0
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-34mw-41t1-m7a9
8
url VCID-37nb-rkj6-e7h9
vulnerability_id VCID-37nb-rkj6-e7h9
summary Absolute Path Traversal in GitHub repository mlflow/mlflow prior to 2.2.2.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-1176
reference_id
reference_type
scores
0
value 0.00157
scoring_system epss
scoring_elements 0.36518
published_at 2026-06-12T12:55:00Z
1
value 0.00157
scoring_system epss
scoring_elements 0.36338
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-1176
1
reference_url https://github.com/advisories/GHSA-wp72-7hj9-5265
reference_id
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-wp72-7hj9-5265
2
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 4.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
3
reference_url https://github.com/mlflow/mlflow/security/advisories/GHSA-wp72-7hj9-5265
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value 4.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
3
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/security/advisories/GHSA-wp72-7hj9-5265
4
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2023-28.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 4.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2023-28.yaml
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-1176
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 4.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-1176
6
reference_url https://github.com/mlflow/mlflow/commit/63ef72aa4334a6473ce7f889573c92fcae0b3c0d
reference_id 63ef72aa4334a6473ce7f889573c92fcae0b3c0d
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
2
value 4.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
3
value MODERATE
scoring_system generic_textual
scoring_elements
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-19T20:57:52Z/
url https://github.com/mlflow/mlflow/commit/63ef72aa4334a6473ce7f889573c92fcae0b3c0d
7
reference_url https://huntr.dev/bounties/ae92f814-6a08-435c-8445-eec0ef4f1085
reference_id ae92f814-6a08-435c-8445-eec0ef4f1085
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
2
value 4.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
3
value MODERATE
scoring_system generic_textual
scoring_elements
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-19T20:57:52Z/
url https://huntr.dev/bounties/ae92f814-6a08-435c-8445-eec0ef4f1085
fixed_packages
0
url pkg:pypi/mlflow@2.2.1
purl pkg:pypi/mlflow@2.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-1sau-auws-mfcs
3
vulnerability VCID-24ct-fu3q-gbgj
4
vulnerability VCID-2hc7-ant5-qkcu
5
vulnerability VCID-2nft-dcgb-53c4
6
vulnerability VCID-2pjc-1kqa-1ygp
7
vulnerability VCID-2ujt-4vpx-6khr
8
vulnerability VCID-34mw-41t1-m7a9
9
vulnerability VCID-37nb-rkj6-e7h9
10
vulnerability VCID-3cb8-9ms7-yyfa
11
vulnerability VCID-3ugt-4ygk-n3b1
12
vulnerability VCID-4jqc-vp49-2ybf
13
vulnerability VCID-4jya-uh8s-4ycv
14
vulnerability VCID-5qjx-6dd1-kbcw
15
vulnerability VCID-6dra-6783-pqg1
16
vulnerability VCID-6mc2-24nz-yqb4
17
vulnerability VCID-6twj-wz2n-eyhf
18
vulnerability VCID-74wr-ebmk-dugn
19
vulnerability VCID-7fb9-mjjp-xfax
20
vulnerability VCID-7hh6-6gv3-tyeg
21
vulnerability VCID-7ykf-b93e-w7am
22
vulnerability VCID-8gmy-kvc8-9fh6
23
vulnerability VCID-96az-gdtg-aka8
24
vulnerability VCID-97xj-trtn-g7ah
25
vulnerability VCID-9mak-nkua-3uhr
26
vulnerability VCID-9prk-73hp-e3dc
27
vulnerability VCID-ag97-535x-ruha
28
vulnerability VCID-axte-ftrh-4bb7
29
vulnerability VCID-c27j-436j-jucx
30
vulnerability VCID-dsmz-t3wg-cbbg
31
vulnerability VCID-ea5n-qghr-vffw
32
vulnerability VCID-fhwc-a97g-qbc7
33
vulnerability VCID-fxtg-yezw-hfhr
34
vulnerability VCID-g4sh-cbk2-dkd7
35
vulnerability VCID-juhn-rya8-ayej
36
vulnerability VCID-k79p-ju8g-9bhe
37
vulnerability VCID-kpds-34mt-b3hf
38
vulnerability VCID-kqsy-qu8j-8ugj
39
vulnerability VCID-m4yj-ast4-e3eh
40
vulnerability VCID-n8p5-749r-rqdu
41
vulnerability VCID-p667-62d7-vfgv
42
vulnerability VCID-qcxq-51sr-9bh4
43
vulnerability VCID-r1na-1j6c-vffy
44
vulnerability VCID-r8c4-p83a-byf5
45
vulnerability VCID-s28h-stan-bqev
46
vulnerability VCID-scm3-63j1-tkf2
47
vulnerability VCID-sts1-rpu2-y7dv
48
vulnerability VCID-tc68-59mt-4qh7
49
vulnerability VCID-tnps-h89q-a7hj
50
vulnerability VCID-tnup-6wcs-pybk
51
vulnerability VCID-ttwk-xeub-ebfy
52
vulnerability VCID-u2ec-h9n9-x7hd
53
vulnerability VCID-u6y9-6vau-nkde
54
vulnerability VCID-u8jf-pjxj-8fey
55
vulnerability VCID-updk-2xum-9bcb
56
vulnerability VCID-vtmk-7xbe-afbe
57
vulnerability VCID-w5et-zcp1-zfdb
58
vulnerability VCID-wphf-gk61-8ube
59
vulnerability VCID-wxeg-ygz4-gqbp
60
vulnerability VCID-xdur-8vs8-jfcy
61
vulnerability VCID-xjux-g847-hyb8
62
vulnerability VCID-yrt1-6bhw-nkgk
63
vulnerability VCID-zgvy-31uv-6yax
64
vulnerability VCID-zsz1-bnbj-dkhy
65
vulnerability VCID-zz7z-56e2-nfbh
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.2.1
1
url pkg:pypi/mlflow@2.2.2
purl pkg:pypi/mlflow@2.2.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-1sau-auws-mfcs
3
vulnerability VCID-24ct-fu3q-gbgj
4
vulnerability VCID-2hc7-ant5-qkcu
5
vulnerability VCID-2nft-dcgb-53c4
6
vulnerability VCID-2pjc-1kqa-1ygp
7
vulnerability VCID-2ujt-4vpx-6khr
8
vulnerability VCID-34mw-41t1-m7a9
9
vulnerability VCID-3cb8-9ms7-yyfa
10
vulnerability VCID-3ugt-4ygk-n3b1
11
vulnerability VCID-4jqc-vp49-2ybf
12
vulnerability VCID-4jya-uh8s-4ycv
13
vulnerability VCID-5qjx-6dd1-kbcw
14
vulnerability VCID-6dra-6783-pqg1
15
vulnerability VCID-6mc2-24nz-yqb4
16
vulnerability VCID-6twj-wz2n-eyhf
17
vulnerability VCID-74wr-ebmk-dugn
18
vulnerability VCID-7fb9-mjjp-xfax
19
vulnerability VCID-7hh6-6gv3-tyeg
20
vulnerability VCID-7ykf-b93e-w7am
21
vulnerability VCID-8gmy-kvc8-9fh6
22
vulnerability VCID-96az-gdtg-aka8
23
vulnerability VCID-97xj-trtn-g7ah
24
vulnerability VCID-9mak-nkua-3uhr
25
vulnerability VCID-9prk-73hp-e3dc
26
vulnerability VCID-ag97-535x-ruha
27
vulnerability VCID-axte-ftrh-4bb7
28
vulnerability VCID-c27j-436j-jucx
29
vulnerability VCID-dsmz-t3wg-cbbg
30
vulnerability VCID-ea5n-qghr-vffw
31
vulnerability VCID-fhwc-a97g-qbc7
32
vulnerability VCID-fxtg-yezw-hfhr
33
vulnerability VCID-g4sh-cbk2-dkd7
34
vulnerability VCID-juhn-rya8-ayej
35
vulnerability VCID-k79p-ju8g-9bhe
36
vulnerability VCID-kpds-34mt-b3hf
37
vulnerability VCID-kqsy-qu8j-8ugj
38
vulnerability VCID-m4yj-ast4-e3eh
39
vulnerability VCID-n8p5-749r-rqdu
40
vulnerability VCID-p667-62d7-vfgv
41
vulnerability VCID-qcxq-51sr-9bh4
42
vulnerability VCID-r1na-1j6c-vffy
43
vulnerability VCID-r8c4-p83a-byf5
44
vulnerability VCID-s28h-stan-bqev
45
vulnerability VCID-scm3-63j1-tkf2
46
vulnerability VCID-sts1-rpu2-y7dv
47
vulnerability VCID-tc68-59mt-4qh7
48
vulnerability VCID-tnps-h89q-a7hj
49
vulnerability VCID-tnup-6wcs-pybk
50
vulnerability VCID-ttwk-xeub-ebfy
51
vulnerability VCID-u2ec-h9n9-x7hd
52
vulnerability VCID-u6y9-6vau-nkde
53
vulnerability VCID-u8jf-pjxj-8fey
54
vulnerability VCID-updk-2xum-9bcb
55
vulnerability VCID-vtmk-7xbe-afbe
56
vulnerability VCID-w5et-zcp1-zfdb
57
vulnerability VCID-wphf-gk61-8ube
58
vulnerability VCID-wxeg-ygz4-gqbp
59
vulnerability VCID-xdur-8vs8-jfcy
60
vulnerability VCID-xjux-g847-hyb8
61
vulnerability VCID-yrt1-6bhw-nkgk
62
vulnerability VCID-zgvy-31uv-6yax
63
vulnerability VCID-zsz1-bnbj-dkhy
64
vulnerability VCID-zz7z-56e2-nfbh
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.2.2
aliases BIT-mlflow-2023-1176, CVE-2023-1176, GHSA-wp72-7hj9-5265, PYSEC-2023-28
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-37nb-rkj6-e7h9
9
url VCID-3cb8-9ms7-yyfa
vulnerability_id VCID-3cb8-9ms7-yyfa
summary 
MLflow Weak Password Requirements Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of MLflow. Authentication is not required to exploit this vulnerability.

The specific flaw exists within the handling of passwords. The issue results from weak password requirements. An attacker can leverage this vulnerability to bypass authentication on the system. Was ZDI-CAN-26916.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-11200
reference_id
reference_type
scores
0
value 0.00234
scoring_system epss
scoring_elements 0.46581
published_at 2026-06-12T12:55:00Z
1
value 0.00234
scoring_system epss
scoring_elements 0.46435
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-11200
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://www.zerodayinitiative.com/advisories/ZDI-25-932
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.zerodayinitiative.com/advisories/ZDI-25-932
3
reference_url https://github.com/mlflow/mlflow/commit/1f74f3f24d8273927b8db392c23e108576936c54
reference_id 1f74f3f24d8273927b8db392c23e108576936c54
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:32Z/
url https://github.com/mlflow/mlflow/commit/1f74f3f24d8273927b8db392c23e108576936c54
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-11200
reference_id CVE-2025-11200
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-11200
5
reference_url https://github.com/advisories/GHSA-6xj8-rrqx-r4cv
reference_id GHSA-6xj8-rrqx-r4cv
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-6xj8-rrqx-r4cv
6
reference_url https://www.zerodayinitiative.com/advisories/ZDI-25-932/
reference_id ZDI-25-932
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:32Z/
url https://www.zerodayinitiative.com/advisories/ZDI-25-932/
fixed_packages
0
url pkg:pypi/mlflow@2.22.0rc0
purl pkg:pypi/mlflow@2.22.0rc0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-3cb8-9ms7-yyfa
3
vulnerability VCID-4jqc-vp49-2ybf
4
vulnerability VCID-4jya-uh8s-4ycv
5
vulnerability VCID-7ykf-b93e-w7am
6
vulnerability VCID-96az-gdtg-aka8
7
vulnerability VCID-97xj-trtn-g7ah
8
vulnerability VCID-9mak-nkua-3uhr
9
vulnerability VCID-axte-ftrh-4bb7
10
vulnerability VCID-fxtg-yezw-hfhr
11
vulnerability VCID-k79p-ju8g-9bhe
12
vulnerability VCID-kqsy-qu8j-8ugj
13
vulnerability VCID-scm3-63j1-tkf2
14
vulnerability VCID-tnps-h89q-a7hj
15
vulnerability VCID-w5et-zcp1-zfdb
16
vulnerability VCID-wphf-gk61-8ube
17
vulnerability VCID-xdur-8vs8-jfcy
18
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.22.0rc0
1
url pkg:pypi/mlflow@2.22.0
purl pkg:pypi/mlflow@2.22.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-4jqc-vp49-2ybf
3
vulnerability VCID-4jya-uh8s-4ycv
4
vulnerability VCID-7ykf-b93e-w7am
5
vulnerability VCID-96az-gdtg-aka8
6
vulnerability VCID-97xj-trtn-g7ah
7
vulnerability VCID-9mak-nkua-3uhr
8
vulnerability VCID-axte-ftrh-4bb7
9
vulnerability VCID-fxtg-yezw-hfhr
10
vulnerability VCID-k79p-ju8g-9bhe
11
vulnerability VCID-kqsy-qu8j-8ugj
12
vulnerability VCID-scm3-63j1-tkf2
13
vulnerability VCID-tnps-h89q-a7hj
14
vulnerability VCID-w5et-zcp1-zfdb
15
vulnerability VCID-wphf-gk61-8ube
16
vulnerability VCID-xdur-8vs8-jfcy
17
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.22.0
aliases CVE-2025-11200, GHSA-6xj8-rrqx-r4cv
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3cb8-9ms7-yyfa
10
url VCID-3ugt-4ygk-n3b1
vulnerability_id VCID-3ugt-4ygk-n3b1
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-6974
reference_id
reference_type
scores
0
value 0.02591
scoring_system epss
scoring_elements 0.85918
published_at 2026-06-11T12:55:00Z
1
value 0.02591
scoring_system epss
scoring_elements 0.85967
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-6974
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://github.com/mlflow/mlflow/commit/8174250f83352a04c2d42079f414759060458555
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/8174250f83352a04c2d42079f414759060458555
3
reference_url https://huntr.com/bounties/438b0524-da0e-4d08-976a-6f270c688393
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://huntr.com/bounties/438b0524-da0e-4d08-976a-6f270c688393
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-6974
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-6974
5
reference_url https://github.com/advisories/GHSA-59v3-898r-qwhj
reference_id GHSA-59v3-898r-qwhj
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-59v3-898r-qwhj
fixed_packages
0
url pkg:pypi/mlflow@2.9.2
purl pkg:pypi/mlflow@2.9.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2nft-dcgb-53c4
4
vulnerability VCID-3cb8-9ms7-yyfa
5
vulnerability VCID-3t2e-xs79-u7cd
6
vulnerability VCID-4jqc-vp49-2ybf
7
vulnerability VCID-4jya-uh8s-4ycv
8
vulnerability VCID-5qjx-6dd1-kbcw
9
vulnerability VCID-6dra-6783-pqg1
10
vulnerability VCID-6mc2-24nz-yqb4
11
vulnerability VCID-6twj-wz2n-eyhf
12
vulnerability VCID-7fb9-mjjp-xfax
13
vulnerability VCID-7hh6-6gv3-tyeg
14
vulnerability VCID-7ykf-b93e-w7am
15
vulnerability VCID-8gmy-kvc8-9fh6
16
vulnerability VCID-96az-gdtg-aka8
17
vulnerability VCID-97xj-trtn-g7ah
18
vulnerability VCID-9mak-nkua-3uhr
19
vulnerability VCID-ag97-535x-ruha
20
vulnerability VCID-axte-ftrh-4bb7
21
vulnerability VCID-c27j-436j-jucx
22
vulnerability VCID-ea5n-qghr-vffw
23
vulnerability VCID-fhwc-a97g-qbc7
24
vulnerability VCID-fxtg-yezw-hfhr
25
vulnerability VCID-juhn-rya8-ayej
26
vulnerability VCID-k79p-ju8g-9bhe
27
vulnerability VCID-kpds-34mt-b3hf
28
vulnerability VCID-kqsy-qu8j-8ugj
29
vulnerability VCID-m4yj-ast4-e3eh
30
vulnerability VCID-p667-62d7-vfgv
31
vulnerability VCID-r8c4-p83a-byf5
32
vulnerability VCID-s28h-stan-bqev
33
vulnerability VCID-scm3-63j1-tkf2
34
vulnerability VCID-sts1-rpu2-y7dv
35
vulnerability VCID-tc68-59mt-4qh7
36
vulnerability VCID-tnps-h89q-a7hj
37
vulnerability VCID-tnup-6wcs-pybk
38
vulnerability VCID-ttwk-xeub-ebfy
39
vulnerability VCID-u6y9-6vau-nkde
40
vulnerability VCID-u8jf-pjxj-8fey
41
vulnerability VCID-updk-2xum-9bcb
42
vulnerability VCID-w5et-zcp1-zfdb
43
vulnerability VCID-wphf-gk61-8ube
44
vulnerability VCID-xdur-8vs8-jfcy
45
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.9.2
aliases CVE-2023-6974, GHSA-59v3-898r-qwhj
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3ugt-4ygk-n3b1
11
url VCID-4jqc-vp49-2ybf
vulnerability_id VCID-4jqc-vp49-2ybf
summary A vulnerability in the `_create_model_version()` handler of `mlflow/server/handlers.py` in mlflow/mlflow versions 3.9.0 and earlier allows an unauthenticated remote attacker to read arbitrary files from the server's filesystem. The issue arises when a `CreateModelVersion` request includes the tag `mlflow.prompt.is_prompt`, which bypasses source path validation. This enables an attacker to store an arbitrary local filesystem path as the model version source. The `get_model_version_artifact_handler()` function later uses this source to serve files without verifying the model version's prompt status, leading to a complete confidentiality compromise. This issue is fixed in version 3.10.0.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2614.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2614.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-2614
reference_id
reference_type
scores
0
value 0.0005
scoring_system epss
scoring_elements 0.16113
published_at 2026-06-11T12:55:00Z
1
value 0.00055
scoring_system epss
scoring_elements 0.17684
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-2614
2
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-2614
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-2614
4
reference_url https://huntr.com/bounties/19380271-3fbf-4beb-987e-6fd7069c55e6
reference_id 19380271-3fbf-4beb-987e-6fd7069c55e6
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-12T13:32:48Z/
url https://huntr.com/bounties/19380271-3fbf-4beb-987e-6fd7069c55e6
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2469309
reference_id 2469309
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2469309
6
reference_url https://github.com/mlflow/mlflow/commit/6e801f4259d96804c73107315b24cef0f6aa115a
reference_id 6e801f4259d96804c73107315b24cef0f6aa115a
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-12T13:32:48Z/
url https://github.com/mlflow/mlflow/commit/6e801f4259d96804c73107315b24cef0f6aa115a
7
reference_url https://github.com/advisories/GHSA-42h5-h8qh-vv9v
reference_id GHSA-42h5-h8qh-vv9v
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-42h5-h8qh-vv9v
fixed_packages
0
url pkg:pypi/mlflow@3.10.0
purl pkg:pypi/mlflow@3.10.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-fxtg-yezw-hfhr
3
vulnerability VCID-kqsy-qu8j-8ugj
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@3.10.0
aliases CVE-2026-2614, GHSA-42h5-h8qh-vv9v
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4jqc-vp49-2ybf
12
url VCID-4jya-uh8s-4ycv
vulnerability_id VCID-4jya-uh8s-4ycv
summary 
MLflow Use of Default Password Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of MLflow. Authentication is not required to exploit this vulnerability.

The specific flaw exists within the basic_auth.ini file. The file contains hard-coded default credentials. An attacker can leverage this vulnerability to bypass authentication and execute arbitrary code in the context of the administrator. Was ZDI-CAN-28256.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2635.json
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2635.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-2635
reference_id
reference_type
scores
0
value 0.01519
scoring_system epss
scoring_elements 0.81702
published_at 2026-06-12T12:55:00Z
1
value 0.01519
scoring_system epss
scoring_elements 0.81642
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-2635
2
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
3
reference_url https://github.com/mlflow/mlflow/commit/5bf2ec2bd4222a18d78631183ac7f6b752afe8a4
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/5bf2ec2bd4222a18d78631183ac7f6b752afe8a4
4
reference_url https://github.com/mlflow/mlflow/releases/tag/v3.8.0rc0
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/releases/tag/v3.8.0rc0
5
reference_url https://www.zerodayinitiative.com/advisories/ZDI-26-111
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://www.zerodayinitiative.com/advisories/ZDI-26-111
6
reference_url https://github.com/mlflow/mlflow/pull/19260
reference_id 19260
reference_type
scores
0
value 9.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
2
value CRITICAL
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-02-24T15:17:25Z/
url https://github.com/mlflow/mlflow/pull/19260
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2441514
reference_id 2441514
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2441514
8
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-2635
reference_id CVE-2026-2635
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-2635
9
reference_url https://github.com/advisories/GHSA-gq3w-7jj3-x7gr
reference_id GHSA-gq3w-7jj3-x7gr
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-gq3w-7jj3-x7gr
10
reference_url https://www.zerodayinitiative.com/advisories/ZDI-26-111/
reference_id ZDI-26-111
reference_type
scores
0
value 9.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-02-24T15:17:25Z/
url https://www.zerodayinitiative.com/advisories/ZDI-26-111/
fixed_packages
0
url pkg:pypi/mlflow@3.8.0rc0
purl pkg:pypi/mlflow@3.8.0rc0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-4jqc-vp49-2ybf
3
vulnerability VCID-96az-gdtg-aka8
4
vulnerability VCID-9mak-nkua-3uhr
5
vulnerability VCID-axte-ftrh-4bb7
6
vulnerability VCID-fxtg-yezw-hfhr
7
vulnerability VCID-kqsy-qu8j-8ugj
8
vulnerability VCID-scm3-63j1-tkf2
9
vulnerability VCID-wphf-gk61-8ube
10
vulnerability VCID-xdur-8vs8-jfcy
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@3.8.0rc0
aliases CVE-2026-2635, GHSA-gq3w-7jj3-x7gr
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4jya-uh8s-4ycv
13
url VCID-6dra-6783-pqg1
vulnerability_id VCID-6dra-6783-pqg1
summary A path traversal vulnerability exists in the mlflow/mlflow repository due to improper handling of URL parameters. By smuggling path traversal sequences using the ';' character in URLs, attackers can manipulate the 'params' portion of the URL to gain unauthorized access to files or directories. This vulnerability allows for arbitrary data smuggling into the 'params' part of the URL, enabling attacks similar to those described in previous reports but utilizing the ';' character for parameter smuggling. Successful exploitation could lead to unauthorized information disclosure or server compromise.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-1593
reference_id
reference_type
scores
0
value 0.00313
scoring_system epss
scoring_elements 0.54862
published_at 2026-06-11T12:55:00Z
1
value 0.00313
scoring_system epss
scoring_elements 0.54984
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-1593
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-1593
reference_id CVE-2024-1593
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-1593
3
reference_url https://huntr.com/bounties/dbdc6bd6-d09a-46f2-9d9c-5138a14b6e31
reference_id dbdc6bd6-d09a-46f2-9d9c-5138a14b6e31
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-18T15:15:57Z/
url https://huntr.com/bounties/dbdc6bd6-d09a-46f2-9d9c-5138a14b6e31
4
reference_url https://github.com/advisories/GHSA-f42m-mvfv-cgw5
reference_id GHSA-f42m-mvfv-cgw5
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-f42m-mvfv-cgw5
fixed_packages
0
url pkg:pypi/mlflow@2.10.0
purl pkg:pypi/mlflow@2.10.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2nft-dcgb-53c4
4
vulnerability VCID-3cb8-9ms7-yyfa
5
vulnerability VCID-3t2e-xs79-u7cd
6
vulnerability VCID-4jqc-vp49-2ybf
7
vulnerability VCID-4jya-uh8s-4ycv
8
vulnerability VCID-5qjx-6dd1-kbcw
9
vulnerability VCID-6mc2-24nz-yqb4
10
vulnerability VCID-6twj-wz2n-eyhf
11
vulnerability VCID-7fb9-mjjp-xfax
12
vulnerability VCID-7ykf-b93e-w7am
13
vulnerability VCID-96az-gdtg-aka8
14
vulnerability VCID-97xj-trtn-g7ah
15
vulnerability VCID-9mak-nkua-3uhr
16
vulnerability VCID-ag97-535x-ruha
17
vulnerability VCID-axte-ftrh-4bb7
18
vulnerability VCID-c27j-436j-jucx
19
vulnerability VCID-ea5n-qghr-vffw
20
vulnerability VCID-fhwc-a97g-qbc7
21
vulnerability VCID-fxtg-yezw-hfhr
22
vulnerability VCID-juhn-rya8-ayej
23
vulnerability VCID-k79p-ju8g-9bhe
24
vulnerability VCID-kpds-34mt-b3hf
25
vulnerability VCID-kqsy-qu8j-8ugj
26
vulnerability VCID-p667-62d7-vfgv
27
vulnerability VCID-r8c4-p83a-byf5
28
vulnerability VCID-s28h-stan-bqev
29
vulnerability VCID-scm3-63j1-tkf2
30
vulnerability VCID-tnps-h89q-a7hj
31
vulnerability VCID-tnup-6wcs-pybk
32
vulnerability VCID-u6y9-6vau-nkde
33
vulnerability VCID-u8jf-pjxj-8fey
34
vulnerability VCID-w5et-zcp1-zfdb
35
vulnerability VCID-wphf-gk61-8ube
36
vulnerability VCID-xdur-8vs8-jfcy
37
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.10.0
aliases CVE-2024-1593, GHSA-f42m-mvfv-cgw5
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6dra-6783-pqg1
14
url VCID-6mc2-24nz-yqb4
vulnerability_id VCID-6mc2-24nz-yqb4
summary Excessive directory permissions in MLflow leads to local privilege escalation when using spark_udf. This behavior can be exploited by a local attacker to gain elevated permissions by using a ToCToU attack. The issue is only relevant when the spark_udf() MLflow API is called.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-27134
reference_id
reference_type
scores
0
value 0.0003
scoring_system epss
scoring_elements 0.09274
published_at 2026-06-12T12:55:00Z
1
value 0.0003
scoring_system epss
scoring_elements 0.09221
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-27134
1
reference_url https://github.com/advisories/GHSA-qpgc-w4mg-6v92
reference_id
reference_type
scores
0
value 7.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://github.com/advisories/GHSA-qpgc-w4mg-6v92
2
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 7.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 7.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
3
reference_url https://github.com/mlflow/mlflow/commit/0b1d995d66a678153e01ed3040f3f4dfc16a0d6b
reference_id
reference_type
scores
0
value 7.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 7.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/0b1d995d66a678153e01ed3040f3f4dfc16a0d6b
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-27134
reference_id
reference_type
scores
0
value 7.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 7.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-27134
5
reference_url https://github.com/mlflow/mlflow/pull/10874
reference_id 10874
reference_type
scores
0
value 7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 7.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
2
value 7.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
3
value 7.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
4
value HIGH
scoring_system generic_textual
scoring_elements
5
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-25T14:23:17Z/
url https://github.com/mlflow/mlflow/pull/10874
fixed_packages
0
url pkg:pypi/mlflow@2.16.0
purl pkg:pypi/mlflow@2.16.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-3cb8-9ms7-yyfa
3
vulnerability VCID-4jqc-vp49-2ybf
4
vulnerability VCID-4jya-uh8s-4ycv
5
vulnerability VCID-7ykf-b93e-w7am
6
vulnerability VCID-96az-gdtg-aka8
7
vulnerability VCID-97xj-trtn-g7ah
8
vulnerability VCID-9mak-nkua-3uhr
9
vulnerability VCID-axte-ftrh-4bb7
10
vulnerability VCID-fxtg-yezw-hfhr
11
vulnerability VCID-k79p-ju8g-9bhe
12
vulnerability VCID-kpds-34mt-b3hf
13
vulnerability VCID-kqsy-qu8j-8ugj
14
vulnerability VCID-r8c4-p83a-byf5
15
vulnerability VCID-scm3-63j1-tkf2
16
vulnerability VCID-tnps-h89q-a7hj
17
vulnerability VCID-u8jf-pjxj-8fey
18
vulnerability VCID-w5et-zcp1-zfdb
19
vulnerability VCID-wphf-gk61-8ube
20
vulnerability VCID-xdur-8vs8-jfcy
21
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.16.0
aliases BIT-mlflow-2024-27134, CVE-2024-27134, GHSA-qpgc-w4mg-6v92, PYSEC-2024-224
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6mc2-24nz-yqb4
15
url VCID-6twj-wz2n-eyhf
vulnerability_id VCID-6twj-wz2n-eyhf
summary A vulnerability in mlflow/mlflow version 2.11.1 allows attackers to create multiple models with the same name by exploiting URL encoding. This flaw can lead to Denial of Service (DoS) as an authenticated user might not be able to use the intended model, as it will open a different model each time. Additionally, an attacker can exploit this vulnerability to perform data model poisoning by creating a model with the same name, potentially causing an authenticated user to become a victim by using the poisoned model. The issue stems from inadequate validation of model names, allowing for the creation of models with URL-encoded names that are treated as distinct from their URL-decoded counterparts.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-3099
reference_id
reference_type
scores
0
value 0.00063
scoring_system epss
scoring_elements 0.19947
published_at 2026-06-12T12:55:00Z
1
value 0.00063
scoring_system epss
scoring_elements 0.19773
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-3099
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://huntr.com/bounties/8d96374a-ce8d-480e-9cb0-0a7e5165c24a
reference_id 8d96374a-ce8d-480e-9cb0-0a7e5165c24a
reference_type
scores
0
value 5.4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
1
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-07T12:51:54Z/
url https://huntr.com/bounties/8d96374a-ce8d-480e-9cb0-0a7e5165c24a
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-3099
reference_id CVE-2024-3099
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-3099
4
reference_url https://github.com/advisories/GHSA-8f8q-q2j7-7j2m
reference_id GHSA-8f8q-q2j7-7j2m
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-8f8q-q2j7-7j2m
fixed_packages
0
url pkg:pypi/mlflow@2.11.3
purl pkg:pypi/mlflow@2.11.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2nft-dcgb-53c4
4
vulnerability VCID-3cb8-9ms7-yyfa
5
vulnerability VCID-3t2e-xs79-u7cd
6
vulnerability VCID-4jqc-vp49-2ybf
7
vulnerability VCID-4jya-uh8s-4ycv
8
vulnerability VCID-5qjx-6dd1-kbcw
9
vulnerability VCID-6mc2-24nz-yqb4
10
vulnerability VCID-7fb9-mjjp-xfax
11
vulnerability VCID-7ykf-b93e-w7am
12
vulnerability VCID-96az-gdtg-aka8
13
vulnerability VCID-97xj-trtn-g7ah
14
vulnerability VCID-9mak-nkua-3uhr
15
vulnerability VCID-ag97-535x-ruha
16
vulnerability VCID-axte-ftrh-4bb7
17
vulnerability VCID-c27j-436j-jucx
18
vulnerability VCID-ea5n-qghr-vffw
19
vulnerability VCID-fhwc-a97g-qbc7
20
vulnerability VCID-fxtg-yezw-hfhr
21
vulnerability VCID-juhn-rya8-ayej
22
vulnerability VCID-k79p-ju8g-9bhe
23
vulnerability VCID-kpds-34mt-b3hf
24
vulnerability VCID-kqsy-qu8j-8ugj
25
vulnerability VCID-r8c4-p83a-byf5
26
vulnerability VCID-s28h-stan-bqev
27
vulnerability VCID-scm3-63j1-tkf2
28
vulnerability VCID-tnps-h89q-a7hj
29
vulnerability VCID-u6y9-6vau-nkde
30
vulnerability VCID-u8jf-pjxj-8fey
31
vulnerability VCID-w5et-zcp1-zfdb
32
vulnerability VCID-wphf-gk61-8ube
33
vulnerability VCID-xdur-8vs8-jfcy
34
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.11.3
aliases CVE-2024-3099, GHSA-8f8q-q2j7-7j2m
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6twj-wz2n-eyhf
16
url VCID-74wr-ebmk-dugn
vulnerability_id VCID-74wr-ebmk-dugn
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-6015
reference_id
reference_type
scores
0
value 0.00767
scoring_system epss
scoring_elements 0.73923
published_at 2026-06-11T12:55:00Z
1
value 0.00767
scoring_system epss
scoring_elements 0.73997
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-6015
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://github.com/mlflow/mlflow/commit/cf83dad4df26dd4a850622fe8a51ccab1471a5e7
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/cf83dad4df26dd4a850622fe8a51ccab1471a5e7
3
reference_url https://github.com/mlflow/mlflow/pull/10330
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/pull/10330
4
reference_url https://huntr.com/bounties/43e6fb72-676e-4670-a225-15d6836f65d3
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://huntr.com/bounties/43e6fb72-676e-4670-a225-15d6836f65d3
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-6015
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-6015
6
reference_url https://github.com/advisories/GHSA-f798-qm4r-23r5
reference_id GHSA-f798-qm4r-23r5
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-f798-qm4r-23r5
fixed_packages
0
url pkg:pypi/mlflow@2.8.1
purl pkg:pypi/mlflow@2.8.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-1sau-auws-mfcs
3
vulnerability VCID-24ct-fu3q-gbgj
4
vulnerability VCID-2hc7-ant5-qkcu
5
vulnerability VCID-2nft-dcgb-53c4
6
vulnerability VCID-2pjc-1kqa-1ygp
7
vulnerability VCID-2ujt-4vpx-6khr
8
vulnerability VCID-34mw-41t1-m7a9
9
vulnerability VCID-3cb8-9ms7-yyfa
10
vulnerability VCID-3t2e-xs79-u7cd
11
vulnerability VCID-3ugt-4ygk-n3b1
12
vulnerability VCID-4jqc-vp49-2ybf
13
vulnerability VCID-4jya-uh8s-4ycv
14
vulnerability VCID-5qjx-6dd1-kbcw
15
vulnerability VCID-6dra-6783-pqg1
16
vulnerability VCID-6mc2-24nz-yqb4
17
vulnerability VCID-6twj-wz2n-eyhf
18
vulnerability VCID-7fb9-mjjp-xfax
19
vulnerability VCID-7hh6-6gv3-tyeg
20
vulnerability VCID-7ykf-b93e-w7am
21
vulnerability VCID-8gmy-kvc8-9fh6
22
vulnerability VCID-96az-gdtg-aka8
23
vulnerability VCID-97xj-trtn-g7ah
24
vulnerability VCID-9mak-nkua-3uhr
25
vulnerability VCID-9prk-73hp-e3dc
26
vulnerability VCID-ag97-535x-ruha
27
vulnerability VCID-axte-ftrh-4bb7
28
vulnerability VCID-c27j-436j-jucx
29
vulnerability VCID-ea5n-qghr-vffw
30
vulnerability VCID-fhwc-a97g-qbc7
31
vulnerability VCID-fxtg-yezw-hfhr
32
vulnerability VCID-g4sh-cbk2-dkd7
33
vulnerability VCID-juhn-rya8-ayej
34
vulnerability VCID-k79p-ju8g-9bhe
35
vulnerability VCID-kpds-34mt-b3hf
36
vulnerability VCID-kqsy-qu8j-8ugj
37
vulnerability VCID-m4yj-ast4-e3eh
38
vulnerability VCID-p667-62d7-vfgv
39
vulnerability VCID-qcxq-51sr-9bh4
40
vulnerability VCID-r8c4-p83a-byf5
41
vulnerability VCID-s28h-stan-bqev
42
vulnerability VCID-scm3-63j1-tkf2
43
vulnerability VCID-sts1-rpu2-y7dv
44
vulnerability VCID-tc68-59mt-4qh7
45
vulnerability VCID-tnps-h89q-a7hj
46
vulnerability VCID-tnup-6wcs-pybk
47
vulnerability VCID-ttwk-xeub-ebfy
48
vulnerability VCID-u6y9-6vau-nkde
49
vulnerability VCID-u8jf-pjxj-8fey
50
vulnerability VCID-updk-2xum-9bcb
51
vulnerability VCID-w5et-zcp1-zfdb
52
vulnerability VCID-wphf-gk61-8ube
53
vulnerability VCID-xdur-8vs8-jfcy
54
vulnerability VCID-xjux-g847-hyb8
55
vulnerability VCID-yrt1-6bhw-nkgk
56
vulnerability VCID-zgvy-31uv-6yax
57
vulnerability VCID-zsz1-bnbj-dkhy
58
vulnerability VCID-zz7z-56e2-nfbh
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.8.1
aliases CVE-2023-6015, GHSA-f798-qm4r-23r5
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-74wr-ebmk-dugn
17
url VCID-7fb9-mjjp-xfax
vulnerability_id VCID-7fb9-mjjp-xfax
summary A path traversal vulnerability exists in mlflow/mlflow version 2.11.0, identified as a bypass for the previously addressed CVE-2023-6909. The vulnerability arises from the application's handling of artifact URLs, where a '#' character can be used to insert a path into the fragment, effectively skipping validation. This allows an attacker to construct a URL that, when processed, ignores the protocol scheme and uses the provided path for filesystem access. As a result, an attacker can read arbitrary files, including sensitive information such as SSH and cloud keys, by exploiting the way the application converts the URL into a filesystem path. The issue stems from insufficient validation of the fragment portion of the URL, leading to arbitrary file read through path traversal.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-3848
reference_id
reference_type
scores
0
value 0.76102
scoring_system epss
scoring_elements 0.98946
published_at 2026-06-12T12:55:00Z
1
value 0.76102
scoring_system epss
scoring_elements 0.98943
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-3848
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2024-244.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2024-244.yaml
3
reference_url https://huntr.com/bounties/8d5aadaa-522f-4839-b41b-d7da362dd610
reference_id 8d5aadaa-522f-4839-b41b-d7da362dd610
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
2
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
3
value HIGH
scoring_system generic_textual
scoring_elements
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-16T13:51:45Z/
url https://huntr.com/bounties/8d5aadaa-522f-4839-b41b-d7da362dd610
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-3848
reference_id CVE-2024-3848
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-3848
5
reference_url https://github.com/mlflow/mlflow/commit/f8d51e21523238280ebcfdb378612afd7844eca8
reference_id f8d51e21523238280ebcfdb378612afd7844eca8
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
2
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
3
value HIGH
scoring_system generic_textual
scoring_elements
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-16T13:51:45Z/
url https://github.com/mlflow/mlflow/commit/f8d51e21523238280ebcfdb378612afd7844eca8
6
reference_url https://github.com/advisories/GHSA-rfqq-wq6w-72jm
reference_id GHSA-rfqq-wq6w-72jm
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-rfqq-wq6w-72jm
fixed_packages
0
url pkg:pypi/mlflow@2.12.1
purl pkg:pypi/mlflow@2.12.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2nft-dcgb-53c4
4
vulnerability VCID-3cb8-9ms7-yyfa
5
vulnerability VCID-3t2e-xs79-u7cd
6
vulnerability VCID-4jqc-vp49-2ybf
7
vulnerability VCID-4jya-uh8s-4ycv
8
vulnerability VCID-5qjx-6dd1-kbcw
9
vulnerability VCID-6mc2-24nz-yqb4
10
vulnerability VCID-7ykf-b93e-w7am
11
vulnerability VCID-96az-gdtg-aka8
12
vulnerability VCID-97xj-trtn-g7ah
13
vulnerability VCID-9mak-nkua-3uhr
14
vulnerability VCID-ag97-535x-ruha
15
vulnerability VCID-axte-ftrh-4bb7
16
vulnerability VCID-c27j-436j-jucx
17
vulnerability VCID-ea5n-qghr-vffw
18
vulnerability VCID-fhwc-a97g-qbc7
19
vulnerability VCID-fxtg-yezw-hfhr
20
vulnerability VCID-juhn-rya8-ayej
21
vulnerability VCID-k79p-ju8g-9bhe
22
vulnerability VCID-kpds-34mt-b3hf
23
vulnerability VCID-kqsy-qu8j-8ugj
24
vulnerability VCID-r8c4-p83a-byf5
25
vulnerability VCID-s28h-stan-bqev
26
vulnerability VCID-scm3-63j1-tkf2
27
vulnerability VCID-tnps-h89q-a7hj
28
vulnerability VCID-u6y9-6vau-nkde
29
vulnerability VCID-u8jf-pjxj-8fey
30
vulnerability VCID-w5et-zcp1-zfdb
31
vulnerability VCID-wphf-gk61-8ube
32
vulnerability VCID-xdur-8vs8-jfcy
33
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.12.1
aliases BIT-mlflow-2024-3848, CVE-2024-3848, GHSA-rfqq-wq6w-72jm, PYSEC-2024-244
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7fb9-mjjp-xfax
18
url VCID-7hh6-6gv3-tyeg
vulnerability_id VCID-7hh6-6gv3-tyeg
summary A path traversal vulnerability exists in the `_create_model_version()` function within `server/handlers.py` of the mlflow/mlflow repository, due to improper validation of the `source` parameter. Attackers can exploit this vulnerability by crafting a `source` parameter that bypasses the `_validate_non_local_source_contains_relative_paths(source)` function's checks, allowing for arbitrary file read access on the server. The issue arises from the handling of unquoted URL characters and the subsequent misuse of the original `source` value for model version creation, leading to the exposure of sensitive files when interacting with the `/model-versions/get-artifact` handler.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-1558
reference_id
reference_type
scores
0
value 0.0009
scoring_system epss
scoring_elements 0.25735
published_at 2026-06-12T12:55:00Z
1
value 0.0009
scoring_system epss
scoring_elements 0.25536
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-1558
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://huntr.com/bounties/7f4dbcc5-b6b3-43dd-b310-e2d0556a8081
reference_id 7f4dbcc5-b6b3-43dd-b310-e2d0556a8081
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-30T19:29:10Z/
url https://huntr.com/bounties/7f4dbcc5-b6b3-43dd-b310-e2d0556a8081
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-1558
reference_id CVE-2024-1558
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-1558
4
reference_url https://github.com/advisories/GHSA-j62r-wxqq-f3gf
reference_id GHSA-j62r-wxqq-f3gf
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-j62r-wxqq-f3gf
fixed_packages
0
url pkg:pypi/mlflow@2.10.0
purl pkg:pypi/mlflow@2.10.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2nft-dcgb-53c4
4
vulnerability VCID-3cb8-9ms7-yyfa
5
vulnerability VCID-3t2e-xs79-u7cd
6
vulnerability VCID-4jqc-vp49-2ybf
7
vulnerability VCID-4jya-uh8s-4ycv
8
vulnerability VCID-5qjx-6dd1-kbcw
9
vulnerability VCID-6mc2-24nz-yqb4
10
vulnerability VCID-6twj-wz2n-eyhf
11
vulnerability VCID-7fb9-mjjp-xfax
12
vulnerability VCID-7ykf-b93e-w7am
13
vulnerability VCID-96az-gdtg-aka8
14
vulnerability VCID-97xj-trtn-g7ah
15
vulnerability VCID-9mak-nkua-3uhr
16
vulnerability VCID-ag97-535x-ruha
17
vulnerability VCID-axte-ftrh-4bb7
18
vulnerability VCID-c27j-436j-jucx
19
vulnerability VCID-ea5n-qghr-vffw
20
vulnerability VCID-fhwc-a97g-qbc7
21
vulnerability VCID-fxtg-yezw-hfhr
22
vulnerability VCID-juhn-rya8-ayej
23
vulnerability VCID-k79p-ju8g-9bhe
24
vulnerability VCID-kpds-34mt-b3hf
25
vulnerability VCID-kqsy-qu8j-8ugj
26
vulnerability VCID-p667-62d7-vfgv
27
vulnerability VCID-r8c4-p83a-byf5
28
vulnerability VCID-s28h-stan-bqev
29
vulnerability VCID-scm3-63j1-tkf2
30
vulnerability VCID-tnps-h89q-a7hj
31
vulnerability VCID-tnup-6wcs-pybk
32
vulnerability VCID-u6y9-6vau-nkde
33
vulnerability VCID-u8jf-pjxj-8fey
34
vulnerability VCID-w5et-zcp1-zfdb
35
vulnerability VCID-wphf-gk61-8ube
36
vulnerability VCID-xdur-8vs8-jfcy
37
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.10.0
1
url pkg:pypi/mlflow@2.12.1
purl pkg:pypi/mlflow@2.12.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2nft-dcgb-53c4
4
vulnerability VCID-3cb8-9ms7-yyfa
5
vulnerability VCID-3t2e-xs79-u7cd
6
vulnerability VCID-4jqc-vp49-2ybf
7
vulnerability VCID-4jya-uh8s-4ycv
8
vulnerability VCID-5qjx-6dd1-kbcw
9
vulnerability VCID-6mc2-24nz-yqb4
10
vulnerability VCID-7ykf-b93e-w7am
11
vulnerability VCID-96az-gdtg-aka8
12
vulnerability VCID-97xj-trtn-g7ah
13
vulnerability VCID-9mak-nkua-3uhr
14
vulnerability VCID-ag97-535x-ruha
15
vulnerability VCID-axte-ftrh-4bb7
16
vulnerability VCID-c27j-436j-jucx
17
vulnerability VCID-ea5n-qghr-vffw
18
vulnerability VCID-fhwc-a97g-qbc7
19
vulnerability VCID-fxtg-yezw-hfhr
20
vulnerability VCID-juhn-rya8-ayej
21
vulnerability VCID-k79p-ju8g-9bhe
22
vulnerability VCID-kpds-34mt-b3hf
23
vulnerability VCID-kqsy-qu8j-8ugj
24
vulnerability VCID-r8c4-p83a-byf5
25
vulnerability VCID-s28h-stan-bqev
26
vulnerability VCID-scm3-63j1-tkf2
27
vulnerability VCID-tnps-h89q-a7hj
28
vulnerability VCID-u6y9-6vau-nkde
29
vulnerability VCID-u8jf-pjxj-8fey
30
vulnerability VCID-w5et-zcp1-zfdb
31
vulnerability VCID-wphf-gk61-8ube
32
vulnerability VCID-xdur-8vs8-jfcy
33
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.12.1
aliases CVE-2024-1558, GHSA-j62r-wxqq-f3gf
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7hh6-6gv3-tyeg
19
url VCID-7ykf-b93e-w7am
vulnerability_id VCID-7ykf-b93e-w7am
summary MLFlow versions up to and including 3.4.0 are vulnerable to DNS rebinding attacks due to a lack of Origin header validation in the MLFlow REST server. This vulnerability allows malicious websites to bypass Same-Origin Policy protections and execute unauthorized calls against REST endpoints. An attacker can query, update, and delete experiments via the affected endpoints, leading to potential data exfiltration, destruction, or manipulation. The issue is resolved in version 3.5.0.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-14279
reference_id
reference_type
scores
0
value 0.0002
scoring_system epss
scoring_elements 0.05807
published_at 2026-06-12T12:55:00Z
1
value 0.0002
scoring_system epss
scoring_elements 0.05785
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-14279
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://github.com/mlflow/mlflow/pull/17910
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/pull/17910
3
reference_url https://github.com/mlflow/mlflow/commit/b0ffd289e9b0d0cc32c9e3a9b9f3843ae83dbec3
reference_id b0ffd289e9b0d0cc32c9e3a9b9f3843ae83dbec3
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
1
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-12T14:54:23Z/
url https://github.com/mlflow/mlflow/commit/b0ffd289e9b0d0cc32c9e3a9b9f3843ae83dbec3
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-14279
reference_id CVE-2025-14279
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-14279
5
reference_url https://huntr.com/bounties/ef478f72-2e4f-44dc-8055-fc06bef03108
reference_id ef478f72-2e4f-44dc-8055-fc06bef03108
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
1
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-12T14:54:23Z/
url https://huntr.com/bounties/ef478f72-2e4f-44dc-8055-fc06bef03108
6
reference_url https://github.com/advisories/GHSA-pgqp-8h46-6x4j
reference_id GHSA-pgqp-8h46-6x4j
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-pgqp-8h46-6x4j
fixed_packages
0
url pkg:pypi/mlflow@3.5.0
purl pkg:pypi/mlflow@3.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-4jqc-vp49-2ybf
3
vulnerability VCID-4jya-uh8s-4ycv
4
vulnerability VCID-96az-gdtg-aka8
5
vulnerability VCID-9mak-nkua-3uhr
6
vulnerability VCID-axte-ftrh-4bb7
7
vulnerability VCID-fxtg-yezw-hfhr
8
vulnerability VCID-kqsy-qu8j-8ugj
9
vulnerability VCID-scm3-63j1-tkf2
10
vulnerability VCID-tnps-h89q-a7hj
11
vulnerability VCID-wphf-gk61-8ube
12
vulnerability VCID-xdur-8vs8-jfcy
13
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@3.5.0
aliases CVE-2025-14279, GHSA-pgqp-8h46-6x4j
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7ykf-b93e-w7am
20
url VCID-8gmy-kvc8-9fh6
vulnerability_id VCID-8gmy-kvc8-9fh6
summary A path traversal vulnerability exists in the mlflow/mlflow repository, specifically within the handling of the `artifact_location` parameter when creating an experiment. Attackers can exploit this vulnerability by using a fragment component `#` in the artifact location URI to read arbitrary files on the server in the context of the server's process. This issue is similar to CVE-2023-6909 but utilizes a different component of the URI to achieve the same effect.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-1594
reference_id
reference_type
scores
0
value 0.00205
scoring_system epss
scoring_elements 0.42699
published_at 2026-06-11T12:55:00Z
1
value 0.00205
scoring_system epss
scoring_elements 0.4286
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-1594
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://github.com/mlflow/mlflow/blob/b929a3e727dc48a1eb19b7e954b7897ac09ad3ec/mlflow/utils/uri.py#L246
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/blob/b929a3e727dc48a1eb19b7e954b7897ac09ad3ec/mlflow/utils/uri.py#L246
3
reference_url https://huntr.com/bounties/424b6f6b-e778-4a2b-b860-39730d396f3e
reference_id 424b6f6b-e778-4a2b-b860-39730d396f3e
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-30T19:35:15Z/
url https://huntr.com/bounties/424b6f6b-e778-4a2b-b860-39730d396f3e
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-1594
reference_id CVE-2024-1594
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-1594
5
reference_url https://github.com/advisories/GHSA-m49c-5c52-6696
reference_id GHSA-m49c-5c52-6696
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-m49c-5c52-6696
fixed_packages
0
url pkg:pypi/mlflow@2.10.0
purl pkg:pypi/mlflow@2.10.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2nft-dcgb-53c4
4
vulnerability VCID-3cb8-9ms7-yyfa
5
vulnerability VCID-3t2e-xs79-u7cd
6
vulnerability VCID-4jqc-vp49-2ybf
7
vulnerability VCID-4jya-uh8s-4ycv
8
vulnerability VCID-5qjx-6dd1-kbcw
9
vulnerability VCID-6mc2-24nz-yqb4
10
vulnerability VCID-6twj-wz2n-eyhf
11
vulnerability VCID-7fb9-mjjp-xfax
12
vulnerability VCID-7ykf-b93e-w7am
13
vulnerability VCID-96az-gdtg-aka8
14
vulnerability VCID-97xj-trtn-g7ah
15
vulnerability VCID-9mak-nkua-3uhr
16
vulnerability VCID-ag97-535x-ruha
17
vulnerability VCID-axte-ftrh-4bb7
18
vulnerability VCID-c27j-436j-jucx
19
vulnerability VCID-ea5n-qghr-vffw
20
vulnerability VCID-fhwc-a97g-qbc7
21
vulnerability VCID-fxtg-yezw-hfhr
22
vulnerability VCID-juhn-rya8-ayej
23
vulnerability VCID-k79p-ju8g-9bhe
24
vulnerability VCID-kpds-34mt-b3hf
25
vulnerability VCID-kqsy-qu8j-8ugj
26
vulnerability VCID-p667-62d7-vfgv
27
vulnerability VCID-r8c4-p83a-byf5
28
vulnerability VCID-s28h-stan-bqev
29
vulnerability VCID-scm3-63j1-tkf2
30
vulnerability VCID-tnps-h89q-a7hj
31
vulnerability VCID-tnup-6wcs-pybk
32
vulnerability VCID-u6y9-6vau-nkde
33
vulnerability VCID-u8jf-pjxj-8fey
34
vulnerability VCID-w5et-zcp1-zfdb
35
vulnerability VCID-wphf-gk61-8ube
36
vulnerability VCID-xdur-8vs8-jfcy
37
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.10.0
aliases CVE-2024-1594, GHSA-m49c-5c52-6696
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8gmy-kvc8-9fh6
21
url VCID-96az-gdtg-aka8
vulnerability_id VCID-96az-gdtg-aka8
summary A Server-Side Request Forgery (SSRF) vulnerability exists in MLflow versions prior to 3.9.0. The `_create_webhook()` function in `mlflow/server/handlers.py` accepts a user-controlled `url` parameter without validation, and the `_send_webhook_request()` function in `mlflow/webhooks/delivery.py` sends HTTP POST requests to this attacker-controlled URL. This allows an authenticated attacker to force the MLflow backend to send HTTP requests to internal services, cloud metadata endpoints, or arbitrary external servers. The lack of input sanitization, URL scheme filtering, or allowlist validation on the webhook URL enables exploitation, potentially leading to cloud credential theft, internal network access, and data exfiltration.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-2393
reference_id
reference_type
scores
0
value 0.00034
scoring_system epss
scoring_elements 0.1052
published_at 2026-06-11T12:55:00Z
1
value 0.00039
scoring_system epss
scoring_elements 0.12229
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-2393
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-2393
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-2393
3
reference_url https://huntr.com/bounties/04ef100d-06b5-4a70-95b1-b7be23aa8150
reference_id 04ef100d-06b5-4a70-95b1-b7be23aa8150
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
1
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-11T18:52:19Z/
url https://huntr.com/bounties/04ef100d-06b5-4a70-95b1-b7be23aa8150
4
reference_url https://github.com/mlflow/mlflow/commit/64aa0ab7207f9c649b59ba1a5f40d82196817389
reference_id 64aa0ab7207f9c649b59ba1a5f40d82196817389
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
1
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-11T18:52:19Z/
url https://github.com/mlflow/mlflow/commit/64aa0ab7207f9c649b59ba1a5f40d82196817389
5
reference_url https://github.com/advisories/GHSA-65h7-c7c4-mghx
reference_id GHSA-65h7-c7c4-mghx
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-65h7-c7c4-mghx
fixed_packages
0
url pkg:pypi/mlflow@3.9.0
purl pkg:pypi/mlflow@3.9.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-4jqc-vp49-2ybf
3
vulnerability VCID-7ach-q3x2-3uat
4
vulnerability VCID-fxtg-yezw-hfhr
5
vulnerability VCID-kqsy-qu8j-8ugj
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@3.9.0
aliases CVE-2026-2393, GHSA-65h7-c7c4-mghx
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-96az-gdtg-aka8
22
url VCID-97xj-trtn-g7ah
vulnerability_id VCID-97xj-trtn-g7ah
summary gateway_proxy_handler in MLflow before 3.1.0 lacks gateway_path validation.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-52967
reference_id
reference_type
scores
0
value 0.00247
scoring_system epss
scoring_elements 0.48243
published_at 2026-06-11T12:55:00Z
1
value 0.00247
scoring_system epss
scoring_elements 0.48381
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-52967
1
reference_url https://github.com/advisories/GHSA-wxj7-3fx5-pp9m
reference_id
reference_type
scores
url https://github.com/advisories/GHSA-wxj7-3fx5-pp9m
2
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
3
reference_url https://github.com/mlflow/mlflow/releases/tag/v2.22.2
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/releases/tag/v2.22.2
4
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2025-52.yaml
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2025-52.yaml
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-52967
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-52967
6
reference_url https://github.com/mlflow/mlflow/issues/15944
reference_id 15944
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-23T20:12:42Z/
url https://github.com/mlflow/mlflow/issues/15944
7
reference_url https://github.com/mlflow/mlflow/pull/15970
reference_id 15970
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-23T20:12:42Z/
url https://github.com/mlflow/mlflow/pull/15970
8
reference_url https://github.com/mlflow/mlflow/releases/tag/v3.1.0
reference_id v3.1.0
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-23T20:12:42Z/
url https://github.com/mlflow/mlflow/releases/tag/v3.1.0
fixed_packages
0
url pkg:pypi/mlflow@2.22.2
purl pkg:pypi/mlflow@2.22.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-4jqc-vp49-2ybf
3
vulnerability VCID-4jya-uh8s-4ycv
4
vulnerability VCID-7ykf-b93e-w7am
5
vulnerability VCID-96az-gdtg-aka8
6
vulnerability VCID-97xj-trtn-g7ah
7
vulnerability VCID-9mak-nkua-3uhr
8
vulnerability VCID-axte-ftrh-4bb7
9
vulnerability VCID-fxtg-yezw-hfhr
10
vulnerability VCID-k79p-ju8g-9bhe
11
vulnerability VCID-kqsy-qu8j-8ugj
12
vulnerability VCID-scm3-63j1-tkf2
13
vulnerability VCID-tnps-h89q-a7hj
14
vulnerability VCID-w5et-zcp1-zfdb
15
vulnerability VCID-wphf-gk61-8ube
16
vulnerability VCID-xdur-8vs8-jfcy
17
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.22.2
1
url pkg:pypi/mlflow@3.0.0rc0
purl pkg:pypi/mlflow@3.0.0rc0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-4jqc-vp49-2ybf
3
vulnerability VCID-4jya-uh8s-4ycv
4
vulnerability VCID-7ykf-b93e-w7am
5
vulnerability VCID-96az-gdtg-aka8
6
vulnerability VCID-97xj-trtn-g7ah
7
vulnerability VCID-9mak-nkua-3uhr
8
vulnerability VCID-axte-ftrh-4bb7
9
vulnerability VCID-fxtg-yezw-hfhr
10
vulnerability VCID-k79p-ju8g-9bhe
11
vulnerability VCID-kqsy-qu8j-8ugj
12
vulnerability VCID-scm3-63j1-tkf2
13
vulnerability VCID-tnps-h89q-a7hj
14
vulnerability VCID-w5et-zcp1-zfdb
15
vulnerability VCID-wphf-gk61-8ube
16
vulnerability VCID-xdur-8vs8-jfcy
17
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@3.0.0rc0
2
url pkg:pypi/mlflow@3.1.0
purl pkg:pypi/mlflow@3.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-4jqc-vp49-2ybf
3
vulnerability VCID-4jya-uh8s-4ycv
4
vulnerability VCID-7ykf-b93e-w7am
5
vulnerability VCID-96az-gdtg-aka8
6
vulnerability VCID-9mak-nkua-3uhr
7
vulnerability VCID-axte-ftrh-4bb7
8
vulnerability VCID-fxtg-yezw-hfhr
9
vulnerability VCID-kqsy-qu8j-8ugj
10
vulnerability VCID-scm3-63j1-tkf2
11
vulnerability VCID-tnps-h89q-a7hj
12
vulnerability VCID-w5et-zcp1-zfdb
13
vulnerability VCID-wphf-gk61-8ube
14
vulnerability VCID-xdur-8vs8-jfcy
15
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@3.1.0
aliases BIT-mlflow-2025-52967, CVE-2025-52967, GHSA-wxj7-3fx5-pp9m, PYSEC-2025-52
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-97xj-trtn-g7ah
23
url VCID-9mak-nkua-3uhr
vulnerability_id VCID-9mak-nkua-3uhr
summary A path traversal vulnerability exists in the `extract_archive_to_dir` function within the `mlflow/pyfunc/dbconnect_artifact_cache.py` file of the mlflow/mlflow repository. This vulnerability, present in versions before v3.7.0, arises due to the lack of validation of tar member paths during extraction. An attacker with control over the tar.gz file can exploit this issue to overwrite arbitrary files or gain elevated privileges, potentially escaping the sandbox directory in multi-tenant or shared cluster environments.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15036.json
reference_id
reference_type
scores
0
value 9.6
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15036.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-15036
reference_id
reference_type
scores
0
value 0.00043
scoring_system epss
scoring_elements 0.1366
published_at 2026-06-11T12:55:00Z
1
value 0.00043
scoring_system epss
scoring_elements 0.13777
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-15036
2
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-15036
reference_id
reference_type
scores
0
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-15036
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2452925
reference_id 2452925
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2452925
5
reference_url https://huntr.com/bounties/36c314cf-fd6e-4fb0-b9b0-1b47bcdf0eb0
reference_id 36c314cf-fd6e-4fb0-b9b0-1b47bcdf0eb0
reference_type
scores
0
value 9.6
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
1
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
2
value CRITICAL
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-03-30T14:01:01Z/
url https://huntr.com/bounties/36c314cf-fd6e-4fb0-b9b0-1b47bcdf0eb0
6
reference_url https://github.com/mlflow/mlflow/commit/3bf6d81ac4d38654c8ff012dbd0c3e9f17e7e346
reference_id 3bf6d81ac4d38654c8ff012dbd0c3e9f17e7e346
reference_type
scores
0
value 9.6
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
1
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
2
value CRITICAL
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-03-30T14:01:01Z/
url https://github.com/mlflow/mlflow/commit/3bf6d81ac4d38654c8ff012dbd0c3e9f17e7e346
7
reference_url https://github.com/advisories/GHSA-vhcx-3pq2-4fvc
reference_id GHSA-vhcx-3pq2-4fvc
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-vhcx-3pq2-4fvc
fixed_packages
0
url pkg:pypi/mlflow@3.9.0rc0
purl pkg:pypi/mlflow@3.9.0rc0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-4jqc-vp49-2ybf
3
vulnerability VCID-96az-gdtg-aka8
4
vulnerability VCID-axte-ftrh-4bb7
5
vulnerability VCID-fxtg-yezw-hfhr
6
vulnerability VCID-kqsy-qu8j-8ugj
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@3.9.0rc0
aliases CVE-2025-15036, GHSA-vhcx-3pq2-4fvc
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9mak-nkua-3uhr
24
url VCID-9prk-73hp-e3dc
vulnerability_id VCID-9prk-73hp-e3dc
summary Improper Neutralization of Special Elements Used in a Template Engine in GitHub repository mlflow/mlflow prior to 2.9.2.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-6709
reference_id
reference_type
scores
0
value 0.00262
scoring_system epss
scoring_elements 0.49989
published_at 2026-06-12T12:55:00Z
1
value 0.00262
scoring_system epss
scoring_elements 0.49853
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-6709
1
reference_url https://github.com/advisories/GHSA-cxfr-5q3r-2rc2
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-cxfr-5q3r-2rc2
2
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
3
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2023-281.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2023-281.yaml
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-6709
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-6709
5
reference_url https://github.com/mlflow/mlflow/commit/432b8ccf27fd3a76df4ba79bb1bec62118a85625
reference_id 432b8ccf27fd3a76df4ba79bb1bec62118a85625
reference_type
scores
0
value 10
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-08T19:52:15Z/
url https://github.com/mlflow/mlflow/commit/432b8ccf27fd3a76df4ba79bb1bec62118a85625
6
reference_url https://huntr.com/bounties/9e4cc07b-6fff-421b-89bd-9445ef61d34d
reference_id 9e4cc07b-6fff-421b-89bd-9445ef61d34d
reference_type
scores
0
value 10
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-08T19:52:15Z/
url https://huntr.com/bounties/9e4cc07b-6fff-421b-89bd-9445ef61d34d
fixed_packages
0
url pkg:pypi/mlflow@2.9.2
purl pkg:pypi/mlflow@2.9.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2nft-dcgb-53c4
4
vulnerability VCID-3cb8-9ms7-yyfa
5
vulnerability VCID-3t2e-xs79-u7cd
6
vulnerability VCID-4jqc-vp49-2ybf
7
vulnerability VCID-4jya-uh8s-4ycv
8
vulnerability VCID-5qjx-6dd1-kbcw
9
vulnerability VCID-6dra-6783-pqg1
10
vulnerability VCID-6mc2-24nz-yqb4
11
vulnerability VCID-6twj-wz2n-eyhf
12
vulnerability VCID-7fb9-mjjp-xfax
13
vulnerability VCID-7hh6-6gv3-tyeg
14
vulnerability VCID-7ykf-b93e-w7am
15
vulnerability VCID-8gmy-kvc8-9fh6
16
vulnerability VCID-96az-gdtg-aka8
17
vulnerability VCID-97xj-trtn-g7ah
18
vulnerability VCID-9mak-nkua-3uhr
19
vulnerability VCID-ag97-535x-ruha
20
vulnerability VCID-axte-ftrh-4bb7
21
vulnerability VCID-c27j-436j-jucx
22
vulnerability VCID-ea5n-qghr-vffw
23
vulnerability VCID-fhwc-a97g-qbc7
24
vulnerability VCID-fxtg-yezw-hfhr
25
vulnerability VCID-juhn-rya8-ayej
26
vulnerability VCID-k79p-ju8g-9bhe
27
vulnerability VCID-kpds-34mt-b3hf
28
vulnerability VCID-kqsy-qu8j-8ugj
29
vulnerability VCID-m4yj-ast4-e3eh
30
vulnerability VCID-p667-62d7-vfgv
31
vulnerability VCID-r8c4-p83a-byf5
32
vulnerability VCID-s28h-stan-bqev
33
vulnerability VCID-scm3-63j1-tkf2
34
vulnerability VCID-sts1-rpu2-y7dv
35
vulnerability VCID-tc68-59mt-4qh7
36
vulnerability VCID-tnps-h89q-a7hj
37
vulnerability VCID-tnup-6wcs-pybk
38
vulnerability VCID-ttwk-xeub-ebfy
39
vulnerability VCID-u6y9-6vau-nkde
40
vulnerability VCID-u8jf-pjxj-8fey
41
vulnerability VCID-updk-2xum-9bcb
42
vulnerability VCID-w5et-zcp1-zfdb
43
vulnerability VCID-wphf-gk61-8ube
44
vulnerability VCID-xdur-8vs8-jfcy
45
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.9.2
aliases BIT-mlflow-2023-6709, CVE-2023-6709, GHSA-cxfr-5q3r-2rc2, PYSEC-2023-281
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9prk-73hp-e3dc
25
url VCID-axte-ftrh-4bb7
vulnerability_id VCID-axte-ftrh-4bb7
summary A command injection vulnerability exists in mlflow/mlflow when serving a model with `enable_mlserver=True`. The `model_uri` is embedded directly into a shell command executed via `bash -c` without proper sanitization. If the `model_uri` contains shell metacharacters, such as `$()` or backticks, it allows for command substitution and execution of attacker-controlled commands. This vulnerability affects the latest version of mlflow/mlflow and can lead to privilege escalation if a higher-privileged service serves models from a directory writable by lower-privileged users.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-0596
reference_id
reference_type
scores
0
value 0.00193
scoring_system epss
scoring_elements 0.41265
published_at 2026-06-12T12:55:00Z
1
value 0.00193
scoring_system epss
scoring_elements 0.41099
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-0596
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://github.com/mlflow/mlflow/commit/202fac4c83ccc8544c087c142b80196d0e60695c
reference_id
reference_type
scores
0
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/202fac4c83ccc8544c087c142b80196d0e60695c
3
reference_url https://github.com/mlflow/mlflow/pull/19738
reference_id
reference_type
scores
0
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/pull/19738
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-0596
reference_id
reference_type
scores
0
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-0596
5
reference_url https://huntr.com/bounties/2e905add-f9f5-4309-a3db-b17de5981285
reference_id 2e905add-f9f5-4309-a3db-b17de5981285
reference_type
scores
0
value 9.6
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
2
value CRITICAL
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-03-31T17:19:22Z/
url https://huntr.com/bounties/2e905add-f9f5-4309-a3db-b17de5981285
6
reference_url https://github.com/advisories/GHSA-rvhj-8chj-8v3c
reference_id GHSA-rvhj-8chj-8v3c
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-rvhj-8chj-8v3c
fixed_packages
0
url pkg:pypi/mlflow@3.9.0
purl pkg:pypi/mlflow@3.9.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-4jqc-vp49-2ybf
3
vulnerability VCID-7ach-q3x2-3uat
4
vulnerability VCID-fxtg-yezw-hfhr
5
vulnerability VCID-kqsy-qu8j-8ugj
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@3.9.0
aliases CVE-2026-0596, GHSA-rvhj-8chj-8v3c
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-axte-ftrh-4bb7
26
url VCID-dsmz-t3wg-cbbg
vulnerability_id VCID-dsmz-t3wg-cbbg
summary An attacker is able to arbitrarily create an account in MLflow bypassing any authentication requirment.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-6014
reference_id
reference_type
scores
0
value 0.00875
scoring_system epss
scoring_elements 0.75788
published_at 2026-06-12T12:55:00Z
1
value 0.00875
scoring_system epss
scoring_elements 0.75718
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-6014
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://github.com/mlflow/mlflow/commit/32de2154ef9f946160e5dc01a4d8a449dd0bd259
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/32de2154ef9f946160e5dc01a4d8a449dd0bd259
3
reference_url https://github.com/mlflow/mlflow/issues/9669
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/issues/9669
4
reference_url https://github.com/mlflow/mlflow/pull/9700
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/pull/9700
5
reference_url https://github.com/mlflow/mlflow/releases/tag/v2.8.0
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/releases/tag/v2.8.0
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-6014
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-6014
7
reference_url https://huntr.com/bounties/3e64df69-ddc2-463e-9809-d07c24dc1de4
reference_id 3e64df69-ddc2-463e-9809-d07c24dc1de4
reference_type
scores
0
value 9.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-09-04T20:20:13Z/
url https://huntr.com/bounties/3e64df69-ddc2-463e-9809-d07c24dc1de4
8
reference_url https://github.com/advisories/GHSA-4qq5-mxxx-m6gg
reference_id GHSA-4qq5-mxxx-m6gg
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-4qq5-mxxx-m6gg
fixed_packages
0
url pkg:pypi/mlflow@2.6.0
purl pkg:pypi/mlflow@2.6.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-1sau-auws-mfcs
3
vulnerability VCID-24ct-fu3q-gbgj
4
vulnerability VCID-2hc7-ant5-qkcu
5
vulnerability VCID-2nft-dcgb-53c4
6
vulnerability VCID-2pjc-1kqa-1ygp
7
vulnerability VCID-2ujt-4vpx-6khr
8
vulnerability VCID-34mw-41t1-m7a9
9
vulnerability VCID-3cb8-9ms7-yyfa
10
vulnerability VCID-3t2e-xs79-u7cd
11
vulnerability VCID-3ugt-4ygk-n3b1
12
vulnerability VCID-4jqc-vp49-2ybf
13
vulnerability VCID-4jya-uh8s-4ycv
14
vulnerability VCID-5qjx-6dd1-kbcw
15
vulnerability VCID-6dra-6783-pqg1
16
vulnerability VCID-6mc2-24nz-yqb4
17
vulnerability VCID-6twj-wz2n-eyhf
18
vulnerability VCID-74wr-ebmk-dugn
19
vulnerability VCID-7fb9-mjjp-xfax
20
vulnerability VCID-7hh6-6gv3-tyeg
21
vulnerability VCID-7ykf-b93e-w7am
22
vulnerability VCID-8gmy-kvc8-9fh6
23
vulnerability VCID-96az-gdtg-aka8
24
vulnerability VCID-97xj-trtn-g7ah
25
vulnerability VCID-9mak-nkua-3uhr
26
vulnerability VCID-9prk-73hp-e3dc
27
vulnerability VCID-ag97-535x-ruha
28
vulnerability VCID-axte-ftrh-4bb7
29
vulnerability VCID-c27j-436j-jucx
30
vulnerability VCID-ea5n-qghr-vffw
31
vulnerability VCID-fhwc-a97g-qbc7
32
vulnerability VCID-fxtg-yezw-hfhr
33
vulnerability VCID-g4sh-cbk2-dkd7
34
vulnerability VCID-juhn-rya8-ayej
35
vulnerability VCID-k79p-ju8g-9bhe
36
vulnerability VCID-kpds-34mt-b3hf
37
vulnerability VCID-kqsy-qu8j-8ugj
38
vulnerability VCID-m4yj-ast4-e3eh
39
vulnerability VCID-p667-62d7-vfgv
40
vulnerability VCID-qcxq-51sr-9bh4
41
vulnerability VCID-r8c4-p83a-byf5
42
vulnerability VCID-s28h-stan-bqev
43
vulnerability VCID-scm3-63j1-tkf2
44
vulnerability VCID-sts1-rpu2-y7dv
45
vulnerability VCID-tc68-59mt-4qh7
46
vulnerability VCID-tnps-h89q-a7hj
47
vulnerability VCID-tnup-6wcs-pybk
48
vulnerability VCID-ttwk-xeub-ebfy
49
vulnerability VCID-u6y9-6vau-nkde
50
vulnerability VCID-u8jf-pjxj-8fey
51
vulnerability VCID-updk-2xum-9bcb
52
vulnerability VCID-w5et-zcp1-zfdb
53
vulnerability VCID-wphf-gk61-8ube
54
vulnerability VCID-xdur-8vs8-jfcy
55
vulnerability VCID-xjux-g847-hyb8
56
vulnerability VCID-yrt1-6bhw-nkgk
57
vulnerability VCID-zgvy-31uv-6yax
58
vulnerability VCID-zsz1-bnbj-dkhy
59
vulnerability VCID-zz7z-56e2-nfbh
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.6.0
1
url pkg:pypi/mlflow@2.8.0
purl pkg:pypi/mlflow@2.8.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-1sau-auws-mfcs
3
vulnerability VCID-24ct-fu3q-gbgj
4
vulnerability VCID-2hc7-ant5-qkcu
5
vulnerability VCID-2nft-dcgb-53c4
6
vulnerability VCID-2pjc-1kqa-1ygp
7
vulnerability VCID-2ujt-4vpx-6khr
8
vulnerability VCID-34mw-41t1-m7a9
9
vulnerability VCID-3cb8-9ms7-yyfa
10
vulnerability VCID-3t2e-xs79-u7cd
11
vulnerability VCID-3ugt-4ygk-n3b1
12
vulnerability VCID-4jqc-vp49-2ybf
13
vulnerability VCID-4jya-uh8s-4ycv
14
vulnerability VCID-5qjx-6dd1-kbcw
15
vulnerability VCID-6dra-6783-pqg1
16
vulnerability VCID-6mc2-24nz-yqb4
17
vulnerability VCID-6twj-wz2n-eyhf
18
vulnerability VCID-74wr-ebmk-dugn
19
vulnerability VCID-7fb9-mjjp-xfax
20
vulnerability VCID-7hh6-6gv3-tyeg
21
vulnerability VCID-7ykf-b93e-w7am
22
vulnerability VCID-8gmy-kvc8-9fh6
23
vulnerability VCID-96az-gdtg-aka8
24
vulnerability VCID-97xj-trtn-g7ah
25
vulnerability VCID-9mak-nkua-3uhr
26
vulnerability VCID-9prk-73hp-e3dc
27
vulnerability VCID-ag97-535x-ruha
28
vulnerability VCID-axte-ftrh-4bb7
29
vulnerability VCID-c27j-436j-jucx
30
vulnerability VCID-ea5n-qghr-vffw
31
vulnerability VCID-fhwc-a97g-qbc7
32
vulnerability VCID-fxtg-yezw-hfhr
33
vulnerability VCID-g4sh-cbk2-dkd7
34
vulnerability VCID-juhn-rya8-ayej
35
vulnerability VCID-k79p-ju8g-9bhe
36
vulnerability VCID-kpds-34mt-b3hf
37
vulnerability VCID-kqsy-qu8j-8ugj
38
vulnerability VCID-m4yj-ast4-e3eh
39
vulnerability VCID-p667-62d7-vfgv
40
vulnerability VCID-qcxq-51sr-9bh4
41
vulnerability VCID-r8c4-p83a-byf5
42
vulnerability VCID-s28h-stan-bqev
43
vulnerability VCID-scm3-63j1-tkf2
44
vulnerability VCID-sts1-rpu2-y7dv
45
vulnerability VCID-tc68-59mt-4qh7
46
vulnerability VCID-tnps-h89q-a7hj
47
vulnerability VCID-tnup-6wcs-pybk
48
vulnerability VCID-ttwk-xeub-ebfy
49
vulnerability VCID-u6y9-6vau-nkde
50
vulnerability VCID-u8jf-pjxj-8fey
51
vulnerability VCID-updk-2xum-9bcb
52
vulnerability VCID-w5et-zcp1-zfdb
53
vulnerability VCID-wphf-gk61-8ube
54
vulnerability VCID-xdur-8vs8-jfcy
55
vulnerability VCID-xjux-g847-hyb8
56
vulnerability VCID-yrt1-6bhw-nkgk
57
vulnerability VCID-zgvy-31uv-6yax
58
vulnerability VCID-zsz1-bnbj-dkhy
59
vulnerability VCID-zz7z-56e2-nfbh
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.8.0
aliases CVE-2023-6014, GHSA-4qq5-mxxx-m6gg
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dsmz-t3wg-cbbg
27
url VCID-dte3-gwkt-yyct
vulnerability_id VCID-dte3-gwkt-yyct
summary Path Traversal: '\..\filename' in GitHub repository mlflow/mlflow prior to 2.2.1.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-1177
reference_id
reference_type
scores
0
value 0.93103
scoring_system epss
scoring_elements 0.998
published_at 2026-06-12T12:55:00Z
1
value 0.93103
scoring_system epss
scoring_elements 0.99799
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-1177
1
reference_url https://github.com/advisories/GHSA-xg73-94fp-g449
reference_id
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-xg73-94fp-g449
2
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
3
reference_url https://github.com/mlflow/mlflow/commit/7162a50c654792c21f3e4a160eb1a0e6a34f6e6e
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/7162a50c654792c21f3e4a160eb1a0e6a34f6e6e
4
reference_url https://github.com/mlflow/mlflow/security/advisories/GHSA-xg73-94fp-g449
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
2
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
3
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/security/advisories/GHSA-xg73-94fp-g449
5
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2023-29.yaml
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2023-29.yaml
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-1177
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-1177
7
reference_url https://huntr.dev/bounties/1fe8f21a-c438-4cba-9add-e8a5dab94e28
reference_id 1fe8f21a-c438-4cba-9add-e8a5dab94e28
reference_type
scores
0
value 9.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
1
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
2
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
3
value CRITICAL
scoring_system generic_textual
scoring_elements
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-19T20:56:06Z/
url https://huntr.dev/bounties/1fe8f21a-c438-4cba-9add-e8a5dab94e28
8
reference_url https://github.com/mlflow/mlflow/pull/7891/commits/7162a50c654792c21f3e4a160eb1a0e6a34f6e6e
reference_id 7162a50c654792c21f3e4a160eb1a0e6a34f6e6e
reference_type
scores
0
value 9.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
1
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
2
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
3
value CRITICAL
scoring_system generic_textual
scoring_elements
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-19T20:56:06Z/
url https://github.com/mlflow/mlflow/pull/7891/commits/7162a50c654792c21f3e4a160eb1a0e6a34f6e6e
fixed_packages
0
url pkg:pypi/mlflow@2.2.1
purl pkg:pypi/mlflow@2.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-1sau-auws-mfcs
3
vulnerability VCID-24ct-fu3q-gbgj
4
vulnerability VCID-2hc7-ant5-qkcu
5
vulnerability VCID-2nft-dcgb-53c4
6
vulnerability VCID-2pjc-1kqa-1ygp
7
vulnerability VCID-2ujt-4vpx-6khr
8
vulnerability VCID-34mw-41t1-m7a9
9
vulnerability VCID-37nb-rkj6-e7h9
10
vulnerability VCID-3cb8-9ms7-yyfa
11
vulnerability VCID-3ugt-4ygk-n3b1
12
vulnerability VCID-4jqc-vp49-2ybf
13
vulnerability VCID-4jya-uh8s-4ycv
14
vulnerability VCID-5qjx-6dd1-kbcw
15
vulnerability VCID-6dra-6783-pqg1
16
vulnerability VCID-6mc2-24nz-yqb4
17
vulnerability VCID-6twj-wz2n-eyhf
18
vulnerability VCID-74wr-ebmk-dugn
19
vulnerability VCID-7fb9-mjjp-xfax
20
vulnerability VCID-7hh6-6gv3-tyeg
21
vulnerability VCID-7ykf-b93e-w7am
22
vulnerability VCID-8gmy-kvc8-9fh6
23
vulnerability VCID-96az-gdtg-aka8
24
vulnerability VCID-97xj-trtn-g7ah
25
vulnerability VCID-9mak-nkua-3uhr
26
vulnerability VCID-9prk-73hp-e3dc
27
vulnerability VCID-ag97-535x-ruha
28
vulnerability VCID-axte-ftrh-4bb7
29
vulnerability VCID-c27j-436j-jucx
30
vulnerability VCID-dsmz-t3wg-cbbg
31
vulnerability VCID-ea5n-qghr-vffw
32
vulnerability VCID-fhwc-a97g-qbc7
33
vulnerability VCID-fxtg-yezw-hfhr
34
vulnerability VCID-g4sh-cbk2-dkd7
35
vulnerability VCID-juhn-rya8-ayej
36
vulnerability VCID-k79p-ju8g-9bhe
37
vulnerability VCID-kpds-34mt-b3hf
38
vulnerability VCID-kqsy-qu8j-8ugj
39
vulnerability VCID-m4yj-ast4-e3eh
40
vulnerability VCID-n8p5-749r-rqdu
41
vulnerability VCID-p667-62d7-vfgv
42
vulnerability VCID-qcxq-51sr-9bh4
43
vulnerability VCID-r1na-1j6c-vffy
44
vulnerability VCID-r8c4-p83a-byf5
45
vulnerability VCID-s28h-stan-bqev
46
vulnerability VCID-scm3-63j1-tkf2
47
vulnerability VCID-sts1-rpu2-y7dv
48
vulnerability VCID-tc68-59mt-4qh7
49
vulnerability VCID-tnps-h89q-a7hj
50
vulnerability VCID-tnup-6wcs-pybk
51
vulnerability VCID-ttwk-xeub-ebfy
52
vulnerability VCID-u2ec-h9n9-x7hd
53
vulnerability VCID-u6y9-6vau-nkde
54
vulnerability VCID-u8jf-pjxj-8fey
55
vulnerability VCID-updk-2xum-9bcb
56
vulnerability VCID-vtmk-7xbe-afbe
57
vulnerability VCID-w5et-zcp1-zfdb
58
vulnerability VCID-wphf-gk61-8ube
59
vulnerability VCID-wxeg-ygz4-gqbp
60
vulnerability VCID-xdur-8vs8-jfcy
61
vulnerability VCID-xjux-g847-hyb8
62
vulnerability VCID-yrt1-6bhw-nkgk
63
vulnerability VCID-zgvy-31uv-6yax
64
vulnerability VCID-zsz1-bnbj-dkhy
65
vulnerability VCID-zz7z-56e2-nfbh
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.2.1
aliases BIT-mlflow-2023-1177, CVE-2023-1177, GHSA-xg73-94fp-g449, PYSEC-2023-29
risk_score 10.0
exploitability 2.0
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dte3-gwkt-yyct
28
url VCID-fhwc-a97g-qbc7
vulnerability_id VCID-fhwc-a97g-qbc7
summary Deserialization of untrusted data can occur in versions of the MLflow platform running version 0.5.0 or newer, enabling a maliciously uploaded PyTorch model to run arbitrary code on an end user’s system when interacted with.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-37059
reference_id
reference_type
scores
0
value 0.00436
scoring_system epss
scoring_elements 0.63457
published_at 2026-06-11T12:55:00Z
1
value 0.00436
scoring_system epss
scoring_elements 0.63559
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-37059
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-37059
reference_id CVE-2024-37059
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-37059
3
reference_url https://github.com/advisories/GHSA-wf7f-8fxf-xfxc
reference_id GHSA-wf7f-8fxf-xfxc
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-wf7f-8fxf-xfxc
4
reference_url https://hiddenlayer.com/sai-security-advisory/mlflow-june2024
reference_id mlflow-june2024
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-06T14:55:38Z/
url https://hiddenlayer.com/sai-security-advisory/mlflow-june2024
fixed_packages
aliases CVE-2024-37059, GHSA-wf7f-8fxf-xfxc
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fhwc-a97g-qbc7
29
url VCID-fxtg-yezw-hfhr
vulnerability_id VCID-fxtg-yezw-hfhr
summary 
MLflow is vulnerable to Stored Cross-Site Scripting (XSS) caused by unsafe parsing of YAML-based MLmodel artifacts in its web interface. An authenticated attacker can upload a malicious MLmodel file containing a payload that executes when another user views the artifact in the UI. This allows actions such as session hijacking or performing operations on behalf of the victim. 

This issue affects MLflow version through 3.10.1
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33865.json
reference_id
reference_type
scores
0
value 4.6
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33865.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-33865
reference_id
reference_type
scores
0
value 0.00011
scoring_system epss
scoring_elements 0.01312
published_at 2026-06-12T12:55:00Z
1
value 0.00011
scoring_system epss
scoring_elements 0.01315
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-33865
2
reference_url https://cert.pl/en/posts/2026/04/CVE-2026-33865
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://cert.pl/en/posts/2026/04/CVE-2026-33865
3
reference_url https://github.com/advisories/GHSA-fh64-r2vc-xvhr
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-fh64-r2vc-xvhr
4
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
5
reference_url https://github.com/mlflow/mlflow/commit/aca4dd0ec88a12f7655155c224371280e9b45dda
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/aca4dd0ec88a12f7655155c224371280e9b45dda
6
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2026-93.yaml
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2026-93.yaml
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-33865
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-33865
8
reference_url https://github.com/mlflow/mlflow/pull/21435
reference_id 21435
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-14T15:13:51Z/
url https://github.com/mlflow/mlflow/pull/21435
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2455899
reference_id 2455899
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2455899
10
reference_url https://afine.com/blogs/attacking-mlflow-how-ml-artifacts-become-attack-vectors
reference_id attacking-mlflow-how-ml-artifacts-become-attack-vectors
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-14T15:13:51Z/
url https://afine.com/blogs/attacking-mlflow-how-ml-artifacts-become-attack-vectors
11
reference_url https://cert.pl/en/posts/2026/04/CVE-2026-33865/
reference_id CVE-2026-33865
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-14T15:13:51Z/
url https://cert.pl/en/posts/2026/04/CVE-2026-33865/
fixed_packages
0
url pkg:pypi/mlflow@3.11.0rc0
purl pkg:pypi/mlflow@3.11.0rc0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-fxtg-yezw-hfhr
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@3.11.0rc0
1
url pkg:pypi/mlflow@3.11.1
purl pkg:pypi/mlflow@3.11.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@3.11.1
aliases BIT-mlflow-2026-33865, CVE-2026-33865, GHSA-fh64-r2vc-xvhr, PYSEC-2026-93
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fxtg-yezw-hfhr
30
url VCID-g4sh-cbk2-dkd7
vulnerability_id VCID-g4sh-cbk2-dkd7
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-43472
reference_id
reference_type
scores
0
value 0.72771
scoring_system epss
scoring_elements 0.98794
published_at 2026-06-11T12:55:00Z
1
value 0.72771
scoring_system epss
scoring_elements 0.98797
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-43472
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://mlflow.org/news/2023/12/06/2.9.0-release/index.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://mlflow.org/news/2023/12/06/2.9.0-release/index.html
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-43472
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-43472
4
reference_url https://www.contrastsecurity.com/security-influencers/discovering-mlflow-framework-zero-day-vulnerability-machine-language-model-security-contrast-security
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.contrastsecurity.com/security-influencers/discovering-mlflow-framework-zero-day-vulnerability-machine-language-model-security-contrast-security
5
reference_url https://github.com/advisories/GHSA-wqxf-447m-6f5f
reference_id GHSA-wqxf-447m-6f5f
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-wqxf-447m-6f5f
fixed_packages
0
url pkg:pypi/mlflow@2.9.0
purl pkg:pypi/mlflow@2.9.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-1sau-auws-mfcs
3
vulnerability VCID-24ct-fu3q-gbgj
4
vulnerability VCID-2hc7-ant5-qkcu
5
vulnerability VCID-2nft-dcgb-53c4
6
vulnerability VCID-2ujt-4vpx-6khr
7
vulnerability VCID-34mw-41t1-m7a9
8
vulnerability VCID-3cb8-9ms7-yyfa
9
vulnerability VCID-3t2e-xs79-u7cd
10
vulnerability VCID-3ugt-4ygk-n3b1
11
vulnerability VCID-4jqc-vp49-2ybf
12
vulnerability VCID-4jya-uh8s-4ycv
13
vulnerability VCID-5qjx-6dd1-kbcw
14
vulnerability VCID-6dra-6783-pqg1
15
vulnerability VCID-6mc2-24nz-yqb4
16
vulnerability VCID-6twj-wz2n-eyhf
17
vulnerability VCID-7fb9-mjjp-xfax
18
vulnerability VCID-7hh6-6gv3-tyeg
19
vulnerability VCID-7ykf-b93e-w7am
20
vulnerability VCID-8gmy-kvc8-9fh6
21
vulnerability VCID-96az-gdtg-aka8
22
vulnerability VCID-97xj-trtn-g7ah
23
vulnerability VCID-9mak-nkua-3uhr
24
vulnerability VCID-9prk-73hp-e3dc
25
vulnerability VCID-ag97-535x-ruha
26
vulnerability VCID-axte-ftrh-4bb7
27
vulnerability VCID-c27j-436j-jucx
28
vulnerability VCID-ea5n-qghr-vffw
29
vulnerability VCID-fhwc-a97g-qbc7
30
vulnerability VCID-fxtg-yezw-hfhr
31
vulnerability VCID-juhn-rya8-ayej
32
vulnerability VCID-k79p-ju8g-9bhe
33
vulnerability VCID-kpds-34mt-b3hf
34
vulnerability VCID-kqsy-qu8j-8ugj
35
vulnerability VCID-m4yj-ast4-e3eh
36
vulnerability VCID-p667-62d7-vfgv
37
vulnerability VCID-r8c4-p83a-byf5
38
vulnerability VCID-s28h-stan-bqev
39
vulnerability VCID-scm3-63j1-tkf2
40
vulnerability VCID-sts1-rpu2-y7dv
41
vulnerability VCID-tc68-59mt-4qh7
42
vulnerability VCID-tnps-h89q-a7hj
43
vulnerability VCID-tnup-6wcs-pybk
44
vulnerability VCID-ttwk-xeub-ebfy
45
vulnerability VCID-u6y9-6vau-nkde
46
vulnerability VCID-u8jf-pjxj-8fey
47
vulnerability VCID-updk-2xum-9bcb
48
vulnerability VCID-w5et-zcp1-zfdb
49
vulnerability VCID-wphf-gk61-8ube
50
vulnerability VCID-xdur-8vs8-jfcy
51
vulnerability VCID-xjux-g847-hyb8
52
vulnerability VCID-yrt1-6bhw-nkgk
53
vulnerability VCID-zgvy-31uv-6yax
54
vulnerability VCID-zsz1-bnbj-dkhy
55
vulnerability VCID-zz7z-56e2-nfbh
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.9.0
aliases CVE-2023-43472, GHSA-wqxf-447m-6f5f
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-g4sh-cbk2-dkd7
31
url VCID-ggnm-6hny-k3b7
vulnerability_id VCID-ggnm-6hny-k3b7
summary Insecure Temporary File in mlflow
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-0736
reference_id
reference_type
scores
0
value 0.00627
scoring_system epss
scoring_elements 0.70707
published_at 2026-06-11T12:55:00Z
1
value 0.00627
scoring_system epss
scoring_elements 0.70797
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-0736
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 8.2
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
1
value 8.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://github.com/mlflow/mlflow/commit/61984e6843d2e59235d82a580c529920cd8f3711
reference_id
reference_type
scores
0
value 8.2
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
1
value 8.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/61984e6843d2e59235d82a580c529920cd8f3711
3
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2022-28.yaml
reference_id
reference_type
scores
0
value 8.2
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
1
value 8.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2022-28.yaml
4
reference_url https://huntr.dev/bounties/e5384764-c583-4dec-a1d8-4697f4e12f75
reference_id
reference_type
scores
0
value 8.2
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
1
value 8.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://huntr.dev/bounties/e5384764-c583-4dec-a1d8-4697f4e12f75
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-0736
reference_id CVE-2022-0736
reference_type
scores
0
value 8.2
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
1
value 8.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2022-0736
6
reference_url https://github.com/advisories/GHSA-vqj2-4v8m-8vrq
reference_id GHSA-vqj2-4v8m-8vrq
reference_type
scores
0
value 8.2
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value 8.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N
3
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/advisories/GHSA-vqj2-4v8m-8vrq
fixed_packages
0
url pkg:pypi/mlflow@1.23.1
purl pkg:pypi/mlflow@1.23.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-1sau-auws-mfcs
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2hc7-ant5-qkcu
4
vulnerability VCID-2nft-dcgb-53c4
5
vulnerability VCID-2pjc-1kqa-1ygp
6
vulnerability VCID-2ujt-4vpx-6khr
7
vulnerability VCID-34mw-41t1-m7a9
8
vulnerability VCID-37nb-rkj6-e7h9
9
vulnerability VCID-3cb8-9ms7-yyfa
10
vulnerability VCID-3ugt-4ygk-n3b1
11
vulnerability VCID-4jqc-vp49-2ybf
12
vulnerability VCID-4jya-uh8s-4ycv
13
vulnerability VCID-5qjx-6dd1-kbcw
14
vulnerability VCID-6dra-6783-pqg1
15
vulnerability VCID-6mc2-24nz-yqb4
16
vulnerability VCID-6twj-wz2n-eyhf
17
vulnerability VCID-74wr-ebmk-dugn
18
vulnerability VCID-7fb9-mjjp-xfax
19
vulnerability VCID-7hh6-6gv3-tyeg
20
vulnerability VCID-7ykf-b93e-w7am
21
vulnerability VCID-8gmy-kvc8-9fh6
22
vulnerability VCID-96az-gdtg-aka8
23
vulnerability VCID-97xj-trtn-g7ah
24
vulnerability VCID-9mak-nkua-3uhr
25
vulnerability VCID-9prk-73hp-e3dc
26
vulnerability VCID-ag97-535x-ruha
27
vulnerability VCID-axte-ftrh-4bb7
28
vulnerability VCID-c27j-436j-jucx
29
vulnerability VCID-dsmz-t3wg-cbbg
30
vulnerability VCID-dte3-gwkt-yyct
31
vulnerability VCID-fhwc-a97g-qbc7
32
vulnerability VCID-fxtg-yezw-hfhr
33
vulnerability VCID-g4sh-cbk2-dkd7
34
vulnerability VCID-juhn-rya8-ayej
35
vulnerability VCID-k79p-ju8g-9bhe
36
vulnerability VCID-kpds-34mt-b3hf
37
vulnerability VCID-kqsy-qu8j-8ugj
38
vulnerability VCID-m4yj-ast4-e3eh
39
vulnerability VCID-n8p5-749r-rqdu
40
vulnerability VCID-p667-62d7-vfgv
41
vulnerability VCID-qcxq-51sr-9bh4
42
vulnerability VCID-r1na-1j6c-vffy
43
vulnerability VCID-r8c4-p83a-byf5
44
vulnerability VCID-s28h-stan-bqev
45
vulnerability VCID-scm3-63j1-tkf2
46
vulnerability VCID-sts1-rpu2-y7dv
47
vulnerability VCID-tc68-59mt-4qh7
48
vulnerability VCID-tnps-h89q-a7hj
49
vulnerability VCID-tnup-6wcs-pybk
50
vulnerability VCID-ttwk-xeub-ebfy
51
vulnerability VCID-u2ec-h9n9-x7hd
52
vulnerability VCID-u8jf-pjxj-8fey
53
vulnerability VCID-updk-2xum-9bcb
54
vulnerability VCID-vgqk-x7vx-mbbw
55
vulnerability VCID-vtmk-7xbe-afbe
56
vulnerability VCID-w5et-zcp1-zfdb
57
vulnerability VCID-wphf-gk61-8ube
58
vulnerability VCID-wxeg-ygz4-gqbp
59
vulnerability VCID-xdur-8vs8-jfcy
60
vulnerability VCID-xjux-g847-hyb8
61
vulnerability VCID-yrt1-6bhw-nkgk
62
vulnerability VCID-zgvy-31uv-6yax
63
vulnerability VCID-zsz1-bnbj-dkhy
64
vulnerability VCID-zz7z-56e2-nfbh
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@1.23.1
aliases BIT-mlflow-2022-0736, CVE-2022-0736, GHSA-vqj2-4v8m-8vrq, PYSEC-2022-28
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ggnm-6hny-k3b7
32
url VCID-k79p-ju8g-9bhe
vulnerability_id VCID-k79p-ju8g-9bhe
summary 
MLflow Tracking Server Model Creation Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MLflow Tracking Server. Authentication is not required to exploit this vulnerability.

The specific flaw exists within the handling of model file paths. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to execute code in the context of the service account. Was ZDI-CAN-26921.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-11201
reference_id
reference_type
scores
0
value 0.17936
scoring_system epss
scoring_elements 0.95314
published_at 2026-06-12T12:55:00Z
1
value 0.17936
scoring_system epss
scoring_elements 0.95299
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-11201
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://github.com/mlflow/mlflow/commit/5f98ff98659dddb188591ecf6b10a4e276a0dba7
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/5f98ff98659dddb188591ecf6b10a4e276a0dba7
3
reference_url https://github.com/mlflow/mlflow/commit/e7dc0574fa3459e0003cfeb68d4e4a625491f03d
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/e7dc0574fa3459e0003cfeb68d4e4a625491f03d
4
reference_url https://www.zerodayinitiative.com/advisories/ZDI-25-931
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.zerodayinitiative.com/advisories/ZDI-25-931
5
reference_url https://github.com/B-Step62/mlflow/commit/2e02bc7bb70df243e6eb792689d9b8eba0013161
reference_id 2e02bc7bb70df243e6eb792689d9b8eba0013161
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:31Z/
url https://github.com/B-Step62/mlflow/commit/2e02bc7bb70df243e6eb792689d9b8eba0013161
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-11201
reference_id CVE-2025-11201
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-11201
7
reference_url https://github.com/advisories/GHSA-5cvj-7rg6-jggj
reference_id GHSA-5cvj-7rg6-jggj
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-5cvj-7rg6-jggj
8
reference_url https://www.zerodayinitiative.com/advisories/ZDI-25-931/
reference_id ZDI-25-931
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:31Z/
url https://www.zerodayinitiative.com/advisories/ZDI-25-931/
fixed_packages
0
url pkg:pypi/mlflow@2.22.4
purl pkg:pypi/mlflow@2.22.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-4jqc-vp49-2ybf
3
vulnerability VCID-4jya-uh8s-4ycv
4
vulnerability VCID-7ykf-b93e-w7am
5
vulnerability VCID-96az-gdtg-aka8
6
vulnerability VCID-97xj-trtn-g7ah
7
vulnerability VCID-9mak-nkua-3uhr
8
vulnerability VCID-axte-ftrh-4bb7
9
vulnerability VCID-fxtg-yezw-hfhr
10
vulnerability VCID-kqsy-qu8j-8ugj
11
vulnerability VCID-scm3-63j1-tkf2
12
vulnerability VCID-tnps-h89q-a7hj
13
vulnerability VCID-w5et-zcp1-zfdb
14
vulnerability VCID-wphf-gk61-8ube
15
vulnerability VCID-xdur-8vs8-jfcy
16
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.22.4
1
url pkg:pypi/mlflow@3.0.0
purl pkg:pypi/mlflow@3.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-4jqc-vp49-2ybf
3
vulnerability VCID-4jya-uh8s-4ycv
4
vulnerability VCID-7ykf-b93e-w7am
5
vulnerability VCID-96az-gdtg-aka8
6
vulnerability VCID-97xj-trtn-g7ah
7
vulnerability VCID-9mak-nkua-3uhr
8
vulnerability VCID-axte-ftrh-4bb7
9
vulnerability VCID-fxtg-yezw-hfhr
10
vulnerability VCID-kqsy-qu8j-8ugj
11
vulnerability VCID-scm3-63j1-tkf2
12
vulnerability VCID-tnps-h89q-a7hj
13
vulnerability VCID-w5et-zcp1-zfdb
14
vulnerability VCID-wphf-gk61-8ube
15
vulnerability VCID-xdur-8vs8-jfcy
16
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@3.0.0
aliases CVE-2025-11201, GHSA-5cvj-7rg6-jggj
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-k79p-ju8g-9bhe
33
url VCID-kpds-34mt-b3hf
vulnerability_id VCID-kpds-34mt-b3hf
summary A path traversal vulnerability exists in mlflow/mlflow version 2.15.1. When users configure and use the dbfs service, concatenating the URL directly into the file protocol results in an arbitrary file read vulnerability. This issue occurs because only the path part of the URL is checked, while parts such as query and parameters are not handled. The vulnerability is triggered if the user has configured the dbfs service, and during usage, the service is mounted to a local directory.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-8859
reference_id
reference_type
scores
0
value 0.25693
scoring_system epss
scoring_elements 0.96376
published_at 2026-06-12T12:55:00Z
1
value 0.25693
scoring_system epss
scoring_elements 0.96365
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-8859
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-8859
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-8859
3
reference_url https://huntr.com/bounties/2259b88b-a0c6-4c7c-b434-6aacf6056dcb
reference_id 2259b88b-a0c6-4c7c-b434-6aacf6056dcb
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-20T17:52:43Z/
url https://huntr.com/bounties/2259b88b-a0c6-4c7c-b434-6aacf6056dcb
4
reference_url https://github.com/mlflow/mlflow/commit/7791b8cdd595f21b5f179c7b17e4b5eb5cbbe654
reference_id 7791b8cdd595f21b5f179c7b17e4b5eb5cbbe654
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-20T17:52:43Z/
url https://github.com/mlflow/mlflow/commit/7791b8cdd595f21b5f179c7b17e4b5eb5cbbe654
5
reference_url https://github.com/advisories/GHSA-4rqf-8pfm-p36r
reference_id GHSA-4rqf-8pfm-p36r
reference_type
scores
url https://github.com/advisories/GHSA-4rqf-8pfm-p36r
fixed_packages
0
url pkg:pypi/mlflow@2.17.0rc0
purl pkg:pypi/mlflow@2.17.0rc0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-3cb8-9ms7-yyfa
3
vulnerability VCID-4jqc-vp49-2ybf
4
vulnerability VCID-4jya-uh8s-4ycv
5
vulnerability VCID-7ykf-b93e-w7am
6
vulnerability VCID-96az-gdtg-aka8
7
vulnerability VCID-97xj-trtn-g7ah
8
vulnerability VCID-9mak-nkua-3uhr
9
vulnerability VCID-axte-ftrh-4bb7
10
vulnerability VCID-fxtg-yezw-hfhr
11
vulnerability VCID-k79p-ju8g-9bhe
12
vulnerability VCID-kqsy-qu8j-8ugj
13
vulnerability VCID-r8c4-p83a-byf5
14
vulnerability VCID-scm3-63j1-tkf2
15
vulnerability VCID-tnps-h89q-a7hj
16
vulnerability VCID-u8jf-pjxj-8fey
17
vulnerability VCID-w5et-zcp1-zfdb
18
vulnerability VCID-wphf-gk61-8ube
19
vulnerability VCID-xdur-8vs8-jfcy
20
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.17.0rc0
aliases CVE-2024-8859, GHSA-4rqf-8pfm-p36r
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kpds-34mt-b3hf
34
url VCID-kqsy-qu8j-8ugj
vulnerability_id VCID-kqsy-qu8j-8ugj
summary 
MLflow is vulnerable to an authorization bypass affecting the AJAX endpoint used to download saved model artifacts. Due to missing access‑control validation, a user without permissions to a given experiment can directly query this endpoint and retrieve model artifacts they are not authorized to access.

 
This issue affects MLflow version through 3.10.1
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33866.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33866.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-33866
reference_id
reference_type
scores
0
value 9e-05
scoring_system epss
scoring_elements 0.01029
published_at 2026-06-12T12:55:00Z
1
value 9e-05
scoring_system epss
scoring_elements 0.01032
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-33866
2
reference_url https://cert.pl/en/posts/2026/04/CVE-2026-33865
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://cert.pl/en/posts/2026/04/CVE-2026-33865
3
reference_url https://github.com/advisories/GHSA-46r5-x6jq-v8g6
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-46r5-x6jq-v8g6
4
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
5
reference_url https://github.com/mlflow/mlflow/commit/005b959cacda05d1423356cfcbd9ebeda8ff96a7
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/005b959cacda05d1423356cfcbd9ebeda8ff96a7
6
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2026-94.yaml
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2026-94.yaml
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-33866
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-33866
8
reference_url https://github.com/mlflow/mlflow/pull/21708
reference_id 21708
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-14T15:12:33Z/
url https://github.com/mlflow/mlflow/pull/21708
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2455900
reference_id 2455900
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2455900
10
reference_url https://afine.com/blogs/attacking-mlflow-how-ml-artifacts-become-attack-vectors
reference_id attacking-mlflow-how-ml-artifacts-become-attack-vectors
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-14T15:12:33Z/
url https://afine.com/blogs/attacking-mlflow-how-ml-artifacts-become-attack-vectors
11
reference_url https://cert.pl/en/posts/2026/04/CVE-2026-33865/
reference_id CVE-2026-33865
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-14T15:12:33Z/
url https://cert.pl/en/posts/2026/04/CVE-2026-33865/
fixed_packages
0
url pkg:pypi/mlflow@3.11.0rc0
purl pkg:pypi/mlflow@3.11.0rc0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-fxtg-yezw-hfhr
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@3.11.0rc0
aliases BIT-mlflow-2026-33866, CVE-2026-33866, GHSA-46r5-x6jq-v8g6, PYSEC-2026-94
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kqsy-qu8j-8ugj
35
url VCID-m4yj-ast4-e3eh
vulnerability_id VCID-m4yj-ast4-e3eh
summary mlflow/mlflow is vulnerable to Local File Inclusion (LFI) due to improper parsing of URIs, allowing attackers to bypass checks and read arbitrary files on the system. The issue arises from the 'is_local_uri' function's failure to properly handle URIs with empty or 'file' schemes, leading to the misclassification of URIs as non-local. Attackers can exploit this by crafting malicious model versions with specially crafted 'source' parameters, enabling the reading of sensitive files within at least two directory levels from the server's root.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-3573
reference_id
reference_type
scores
0
value 0.00199
scoring_system epss
scoring_elements 0.41901
published_at 2026-06-11T12:55:00Z
1
value 0.00199
scoring_system epss
scoring_elements 0.42064
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-3573
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 9.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2024-243.yaml
reference_id
reference_type
scores
0
value 9.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2024-243.yaml
3
reference_url https://github.com/mlflow/mlflow/commit/438a450714a3ca06285eeea34bdc6cf79d7f6cbc
reference_id 438a450714a3ca06285eeea34bdc6cf79d7f6cbc
reference_type
scores
0
value 9.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
1
value 9.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
2
value 9.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
3
value CRITICAL
scoring_system generic_textual
scoring_elements
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-17T19:40:10Z/
url https://github.com/mlflow/mlflow/commit/438a450714a3ca06285eeea34bdc6cf79d7f6cbc
4
reference_url https://huntr.com/bounties/8ea058a7-4ef8-4baf-9198-bc0147fc543c
reference_id 8ea058a7-4ef8-4baf-9198-bc0147fc543c
reference_type
scores
0
value 9.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
1
value 9.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
2
value 9.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
3
value CRITICAL
scoring_system generic_textual
scoring_elements
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-17T19:40:10Z/
url https://huntr.com/bounties/8ea058a7-4ef8-4baf-9198-bc0147fc543c
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-3573
reference_id CVE-2024-3573
reference_type
scores
0
value 9.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-3573
6
reference_url https://github.com/advisories/GHSA-hq88-wg7q-gp4g
reference_id GHSA-hq88-wg7q-gp4g
reference_type
scores
0
value 9.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
1
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-hq88-wg7q-gp4g
fixed_packages
0
url pkg:pypi/mlflow@2.10.0
purl pkg:pypi/mlflow@2.10.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2nft-dcgb-53c4
4
vulnerability VCID-3cb8-9ms7-yyfa
5
vulnerability VCID-3t2e-xs79-u7cd
6
vulnerability VCID-4jqc-vp49-2ybf
7
vulnerability VCID-4jya-uh8s-4ycv
8
vulnerability VCID-5qjx-6dd1-kbcw
9
vulnerability VCID-6mc2-24nz-yqb4
10
vulnerability VCID-6twj-wz2n-eyhf
11
vulnerability VCID-7fb9-mjjp-xfax
12
vulnerability VCID-7ykf-b93e-w7am
13
vulnerability VCID-96az-gdtg-aka8
14
vulnerability VCID-97xj-trtn-g7ah
15
vulnerability VCID-9mak-nkua-3uhr
16
vulnerability VCID-ag97-535x-ruha
17
vulnerability VCID-axte-ftrh-4bb7
18
vulnerability VCID-c27j-436j-jucx
19
vulnerability VCID-ea5n-qghr-vffw
20
vulnerability VCID-fhwc-a97g-qbc7
21
vulnerability VCID-fxtg-yezw-hfhr
22
vulnerability VCID-juhn-rya8-ayej
23
vulnerability VCID-k79p-ju8g-9bhe
24
vulnerability VCID-kpds-34mt-b3hf
25
vulnerability VCID-kqsy-qu8j-8ugj
26
vulnerability VCID-p667-62d7-vfgv
27
vulnerability VCID-r8c4-p83a-byf5
28
vulnerability VCID-s28h-stan-bqev
29
vulnerability VCID-scm3-63j1-tkf2
30
vulnerability VCID-tnps-h89q-a7hj
31
vulnerability VCID-tnup-6wcs-pybk
32
vulnerability VCID-u6y9-6vau-nkde
33
vulnerability VCID-u8jf-pjxj-8fey
34
vulnerability VCID-w5et-zcp1-zfdb
35
vulnerability VCID-wphf-gk61-8ube
36
vulnerability VCID-xdur-8vs8-jfcy
37
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.10.0
aliases BIT-mlflow-2024-3573, CVE-2024-3573, GHSA-hq88-wg7q-gp4g, PYSEC-2024-243
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-m4yj-ast4-e3eh
36
url VCID-n8p5-749r-rqdu
vulnerability_id VCID-n8p5-749r-rqdu
summary Relative Path Traversal in GitHub repository mlflow/mlflow prior to 2.3.1.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-2356
reference_id
reference_type
scores
0
value 0.89021
scoring_system epss
scoring_elements 0.99548
published_at 2026-06-11T12:55:00Z
1
value 0.89021
scoring_system epss
scoring_elements 0.99549
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-2356
1
reference_url https://github.com/advisories/GHSA-x422-6qhv-p29g
reference_id
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-x422-6qhv-p29g
2
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L
1
value 7.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:L
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
3
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2023-68.yaml
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L
1
value 7.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:L
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2023-68.yaml
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-2356
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L
1
value 7.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:L
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-2356
5
reference_url https://huntr.dev/bounties/7b5d130d-38eb-4133-8c7d-0dfc9a9d9896
reference_id 7b5d130d-38eb-4133-8c7d-0dfc9a9d9896
reference_type
scores
0
value 10
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L
1
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L
2
value 7.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:L
3
value HIGH
scoring_system generic_textual
scoring_elements
4
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-01-30T20:48:24Z/
url https://huntr.dev/bounties/7b5d130d-38eb-4133-8c7d-0dfc9a9d9896
6
reference_url https://github.com/mlflow/mlflow/commit/f73147496e05c09a8b83d95fb4f1bf86696c6342
reference_id f73147496e05c09a8b83d95fb4f1bf86696c6342
reference_type
scores
0
value 10
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L
1
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L
2
value 7.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:L
3
value HIGH
scoring_system generic_textual
scoring_elements
4
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-01-30T20:48:24Z/
url https://github.com/mlflow/mlflow/commit/f73147496e05c09a8b83d95fb4f1bf86696c6342
fixed_packages
0
url pkg:pypi/mlflow@2.3.1
purl pkg:pypi/mlflow@2.3.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-1sau-auws-mfcs
3
vulnerability VCID-24ct-fu3q-gbgj
4
vulnerability VCID-2hc7-ant5-qkcu
5
vulnerability VCID-2nft-dcgb-53c4
6
vulnerability VCID-2pjc-1kqa-1ygp
7
vulnerability VCID-2ujt-4vpx-6khr
8
vulnerability VCID-34mw-41t1-m7a9
9
vulnerability VCID-3cb8-9ms7-yyfa
10
vulnerability VCID-3ugt-4ygk-n3b1
11
vulnerability VCID-4jqc-vp49-2ybf
12
vulnerability VCID-4jya-uh8s-4ycv
13
vulnerability VCID-5qjx-6dd1-kbcw
14
vulnerability VCID-6dra-6783-pqg1
15
vulnerability VCID-6mc2-24nz-yqb4
16
vulnerability VCID-6twj-wz2n-eyhf
17
vulnerability VCID-74wr-ebmk-dugn
18
vulnerability VCID-7fb9-mjjp-xfax
19
vulnerability VCID-7hh6-6gv3-tyeg
20
vulnerability VCID-7ykf-b93e-w7am
21
vulnerability VCID-8gmy-kvc8-9fh6
22
vulnerability VCID-96az-gdtg-aka8
23
vulnerability VCID-97xj-trtn-g7ah
24
vulnerability VCID-9mak-nkua-3uhr
25
vulnerability VCID-9prk-73hp-e3dc
26
vulnerability VCID-ag97-535x-ruha
27
vulnerability VCID-axte-ftrh-4bb7
28
vulnerability VCID-c27j-436j-jucx
29
vulnerability VCID-dsmz-t3wg-cbbg
30
vulnerability VCID-ea5n-qghr-vffw
31
vulnerability VCID-fhwc-a97g-qbc7
32
vulnerability VCID-fxtg-yezw-hfhr
33
vulnerability VCID-g4sh-cbk2-dkd7
34
vulnerability VCID-juhn-rya8-ayej
35
vulnerability VCID-k79p-ju8g-9bhe
36
vulnerability VCID-kpds-34mt-b3hf
37
vulnerability VCID-kqsy-qu8j-8ugj
38
vulnerability VCID-m4yj-ast4-e3eh
39
vulnerability VCID-p667-62d7-vfgv
40
vulnerability VCID-qcxq-51sr-9bh4
41
vulnerability VCID-r1na-1j6c-vffy
42
vulnerability VCID-r8c4-p83a-byf5
43
vulnerability VCID-s28h-stan-bqev
44
vulnerability VCID-scm3-63j1-tkf2
45
vulnerability VCID-sts1-rpu2-y7dv
46
vulnerability VCID-tc68-59mt-4qh7
47
vulnerability VCID-tnps-h89q-a7hj
48
vulnerability VCID-tnup-6wcs-pybk
49
vulnerability VCID-ttwk-xeub-ebfy
50
vulnerability VCID-u6y9-6vau-nkde
51
vulnerability VCID-u8jf-pjxj-8fey
52
vulnerability VCID-updk-2xum-9bcb
53
vulnerability VCID-w5et-zcp1-zfdb
54
vulnerability VCID-wphf-gk61-8ube
55
vulnerability VCID-wxeg-ygz4-gqbp
56
vulnerability VCID-xdur-8vs8-jfcy
57
vulnerability VCID-xjux-g847-hyb8
58
vulnerability VCID-yrt1-6bhw-nkgk
59
vulnerability VCID-zgvy-31uv-6yax
60
vulnerability VCID-zsz1-bnbj-dkhy
61
vulnerability VCID-zz7z-56e2-nfbh
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.3.1
aliases BIT-mlflow-2023-2356, CVE-2023-2356, GHSA-x422-6qhv-p29g, PYSEC-2023-68
risk_score 10.0
exploitability 2.0
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n8p5-749r-rqdu
37
url VCID-p667-62d7-vfgv
vulnerability_id VCID-p667-62d7-vfgv
summary A broken access control vulnerability exists in mlflow/mlflow versions before 2.10.1, where low privilege users with only EDIT permissions on an experiment can delete any artifacts. This issue arises due to the lack of proper validation for DELETE requests by users with EDIT permissions, allowing them to perform unauthorized deletions of artifacts. The vulnerability specifically affects the handling of artifact deletions within the application, as demonstrated by the ability of a low privilege user to delete a directory inside an artifact using a DELETE request, despite the official documentation stating that users with EDIT permission can only read and update artifacts, not delete them.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-4263
reference_id
reference_type
scores
0
value 0.00062
scoring_system epss
scoring_elements 0.19675
published_at 2026-06-12T12:55:00Z
1
value 0.00062
scoring_system epss
scoring_elements 0.19501
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-4263
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2024-51.yaml
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2024-51.yaml
3
reference_url https://github.com/mlflow/mlflow/commit/b43e0e3de5b500554e13dc032ba2083b2d6c94b8
reference_id b43e0e3de5b500554e13dc032ba2083b2d6c94b8
reference_type
scores
0
value 5.4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
1
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-24T15:35:23Z/
url https://github.com/mlflow/mlflow/commit/b43e0e3de5b500554e13dc032ba2083b2d6c94b8
4
reference_url https://huntr.com/bounties/bfa116d3-2af8-4c4a-ac34-ccde7491ae11
reference_id bfa116d3-2af8-4c4a-ac34-ccde7491ae11
reference_type
scores
0
value 5.4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
1
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-24T15:35:23Z/
url https://huntr.com/bounties/bfa116d3-2af8-4c4a-ac34-ccde7491ae11
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-4263
reference_id CVE-2024-4263
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-4263
6
reference_url https://github.com/advisories/GHSA-p4jx-q62p-x5jr
reference_id GHSA-p4jx-q62p-x5jr
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-p4jx-q62p-x5jr
fixed_packages
0
url pkg:pypi/mlflow@2.10.1
purl pkg:pypi/mlflow@2.10.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2nft-dcgb-53c4
4
vulnerability VCID-3cb8-9ms7-yyfa
5
vulnerability VCID-3t2e-xs79-u7cd
6
vulnerability VCID-4jqc-vp49-2ybf
7
vulnerability VCID-4jya-uh8s-4ycv
8
vulnerability VCID-5qjx-6dd1-kbcw
9
vulnerability VCID-6mc2-24nz-yqb4
10
vulnerability VCID-6twj-wz2n-eyhf
11
vulnerability VCID-7fb9-mjjp-xfax
12
vulnerability VCID-7ykf-b93e-w7am
13
vulnerability VCID-96az-gdtg-aka8
14
vulnerability VCID-97xj-trtn-g7ah
15
vulnerability VCID-9mak-nkua-3uhr
16
vulnerability VCID-ag97-535x-ruha
17
vulnerability VCID-axte-ftrh-4bb7
18
vulnerability VCID-c27j-436j-jucx
19
vulnerability VCID-ea5n-qghr-vffw
20
vulnerability VCID-fhwc-a97g-qbc7
21
vulnerability VCID-fxtg-yezw-hfhr
22
vulnerability VCID-juhn-rya8-ayej
23
vulnerability VCID-k79p-ju8g-9bhe
24
vulnerability VCID-kpds-34mt-b3hf
25
vulnerability VCID-kqsy-qu8j-8ugj
26
vulnerability VCID-r8c4-p83a-byf5
27
vulnerability VCID-s28h-stan-bqev
28
vulnerability VCID-scm3-63j1-tkf2
29
vulnerability VCID-tnps-h89q-a7hj
30
vulnerability VCID-tnup-6wcs-pybk
31
vulnerability VCID-u6y9-6vau-nkde
32
vulnerability VCID-u8jf-pjxj-8fey
33
vulnerability VCID-w5et-zcp1-zfdb
34
vulnerability VCID-wphf-gk61-8ube
35
vulnerability VCID-xdur-8vs8-jfcy
36
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.10.1
aliases BIT-mlflow-2024-4263, CVE-2024-4263, GHSA-p4jx-q62p-x5jr, PYSEC-2024-51
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p667-62d7-vfgv
38
url VCID-qcxq-51sr-9bh4
vulnerability_id VCID-qcxq-51sr-9bh4
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-6018
reference_id
reference_type
scores
0
value 0.91273
scoring_system epss
scoring_elements 0.99671
published_at 2026-06-11T12:55:00Z
1
value 0.91273
scoring_system epss
scoring_elements 0.99672
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-6018
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://github.com/mlflow/mlflow/commit/55c72d02380e8db8118595a4fdae7879cb7ac5bd
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/55c72d02380e8db8118595a4fdae7879cb7ac5bd
3
reference_url https://huntr.com/bounties/7cf918b5-43f4-48c0-a371-4d963ce69b30
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://huntr.com/bounties/7cf918b5-43f4-48c0-a371-4d963ce69b30
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-6018
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-6018
5
reference_url https://github.com/advisories/GHSA-5p3h-7fwh-92rc
reference_id GHSA-5p3h-7fwh-92rc
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-5p3h-7fwh-92rc
fixed_packages
0
url pkg:pypi/mlflow@2.9.2
purl pkg:pypi/mlflow@2.9.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2nft-dcgb-53c4
4
vulnerability VCID-3cb8-9ms7-yyfa
5
vulnerability VCID-3t2e-xs79-u7cd
6
vulnerability VCID-4jqc-vp49-2ybf
7
vulnerability VCID-4jya-uh8s-4ycv
8
vulnerability VCID-5qjx-6dd1-kbcw
9
vulnerability VCID-6dra-6783-pqg1
10
vulnerability VCID-6mc2-24nz-yqb4
11
vulnerability VCID-6twj-wz2n-eyhf
12
vulnerability VCID-7fb9-mjjp-xfax
13
vulnerability VCID-7hh6-6gv3-tyeg
14
vulnerability VCID-7ykf-b93e-w7am
15
vulnerability VCID-8gmy-kvc8-9fh6
16
vulnerability VCID-96az-gdtg-aka8
17
vulnerability VCID-97xj-trtn-g7ah
18
vulnerability VCID-9mak-nkua-3uhr
19
vulnerability VCID-ag97-535x-ruha
20
vulnerability VCID-axte-ftrh-4bb7
21
vulnerability VCID-c27j-436j-jucx
22
vulnerability VCID-ea5n-qghr-vffw
23
vulnerability VCID-fhwc-a97g-qbc7
24
vulnerability VCID-fxtg-yezw-hfhr
25
vulnerability VCID-juhn-rya8-ayej
26
vulnerability VCID-k79p-ju8g-9bhe
27
vulnerability VCID-kpds-34mt-b3hf
28
vulnerability VCID-kqsy-qu8j-8ugj
29
vulnerability VCID-m4yj-ast4-e3eh
30
vulnerability VCID-p667-62d7-vfgv
31
vulnerability VCID-r8c4-p83a-byf5
32
vulnerability VCID-s28h-stan-bqev
33
vulnerability VCID-scm3-63j1-tkf2
34
vulnerability VCID-sts1-rpu2-y7dv
35
vulnerability VCID-tc68-59mt-4qh7
36
vulnerability VCID-tnps-h89q-a7hj
37
vulnerability VCID-tnup-6wcs-pybk
38
vulnerability VCID-ttwk-xeub-ebfy
39
vulnerability VCID-u6y9-6vau-nkde
40
vulnerability VCID-u8jf-pjxj-8fey
41
vulnerability VCID-updk-2xum-9bcb
42
vulnerability VCID-w5et-zcp1-zfdb
43
vulnerability VCID-wphf-gk61-8ube
44
vulnerability VCID-xdur-8vs8-jfcy
45
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.9.2
aliases CVE-2023-6018, GHSA-5p3h-7fwh-92rc
risk_score 10.0
exploitability 2.0
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qcxq-51sr-9bh4
39
url VCID-r1na-1j6c-vffy
vulnerability_id VCID-r1na-1j6c-vffy
summary Absolute Path Traversal in GitHub repository mlflow/mlflow prior to 2.5.0.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-3765
reference_id
reference_type
scores
0
value 0.91453
scoring_system epss
scoring_elements 0.99683
published_at 2026-06-12T12:55:00Z
1
value 0.91453
scoring_system epss
scoring_elements 0.99682
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-3765
1
reference_url https://github.com/advisories/GHSA-fmxj-6h9g-6vw3
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-fmxj-6h9g-6vw3
2
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
3
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2023-308.yaml
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2023-308.yaml
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-3765
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-3765
5
reference_url https://huntr.dev/bounties/4be5fd63-8a0a-490d-9ee1-f33dc768ed76
reference_id 4be5fd63-8a0a-490d-9ee1-f33dc768ed76
reference_type
scores
0
value 10
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
2
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
3
value CRITICAL
scoring_system generic_textual
scoring_elements
4
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-24T18:17:22Z/
url https://huntr.dev/bounties/4be5fd63-8a0a-490d-9ee1-f33dc768ed76
6
reference_url https://github.com/mlflow/mlflow/commit/6dde93758d42455cb90ef324407919ed67668b9b
reference_id 6dde93758d42455cb90ef324407919ed67668b9b
reference_type
scores
0
value 10
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
2
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
3
value CRITICAL
scoring_system generic_textual
scoring_elements
4
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-24T18:17:22Z/
url https://github.com/mlflow/mlflow/commit/6dde93758d42455cb90ef324407919ed67668b9b
fixed_packages
0
url pkg:pypi/mlflow@2.5.0
purl pkg:pypi/mlflow@2.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-1sau-auws-mfcs
3
vulnerability VCID-24ct-fu3q-gbgj
4
vulnerability VCID-2hc7-ant5-qkcu
5
vulnerability VCID-2nft-dcgb-53c4
6
vulnerability VCID-2pjc-1kqa-1ygp
7
vulnerability VCID-2ujt-4vpx-6khr
8
vulnerability VCID-34mw-41t1-m7a9
9
vulnerability VCID-3cb8-9ms7-yyfa
10
vulnerability VCID-3t2e-xs79-u7cd
11
vulnerability VCID-3ugt-4ygk-n3b1
12
vulnerability VCID-4jqc-vp49-2ybf
13
vulnerability VCID-4jya-uh8s-4ycv
14
vulnerability VCID-5qjx-6dd1-kbcw
15
vulnerability VCID-6dra-6783-pqg1
16
vulnerability VCID-6mc2-24nz-yqb4
17
vulnerability VCID-6twj-wz2n-eyhf
18
vulnerability VCID-74wr-ebmk-dugn
19
vulnerability VCID-7fb9-mjjp-xfax
20
vulnerability VCID-7hh6-6gv3-tyeg
21
vulnerability VCID-7ykf-b93e-w7am
22
vulnerability VCID-8gmy-kvc8-9fh6
23
vulnerability VCID-96az-gdtg-aka8
24
vulnerability VCID-97xj-trtn-g7ah
25
vulnerability VCID-9mak-nkua-3uhr
26
vulnerability VCID-9prk-73hp-e3dc
27
vulnerability VCID-ag97-535x-ruha
28
vulnerability VCID-axte-ftrh-4bb7
29
vulnerability VCID-c27j-436j-jucx
30
vulnerability VCID-dsmz-t3wg-cbbg
31
vulnerability VCID-ea5n-qghr-vffw
32
vulnerability VCID-fhwc-a97g-qbc7
33
vulnerability VCID-fxtg-yezw-hfhr
34
vulnerability VCID-g4sh-cbk2-dkd7
35
vulnerability VCID-juhn-rya8-ayej
36
vulnerability VCID-k79p-ju8g-9bhe
37
vulnerability VCID-kpds-34mt-b3hf
38
vulnerability VCID-kqsy-qu8j-8ugj
39
vulnerability VCID-m4yj-ast4-e3eh
40
vulnerability VCID-p667-62d7-vfgv
41
vulnerability VCID-qcxq-51sr-9bh4
42
vulnerability VCID-r8c4-p83a-byf5
43
vulnerability VCID-s28h-stan-bqev
44
vulnerability VCID-scm3-63j1-tkf2
45
vulnerability VCID-sts1-rpu2-y7dv
46
vulnerability VCID-tc68-59mt-4qh7
47
vulnerability VCID-tnps-h89q-a7hj
48
vulnerability VCID-tnup-6wcs-pybk
49
vulnerability VCID-ttwk-xeub-ebfy
50
vulnerability VCID-u6y9-6vau-nkde
51
vulnerability VCID-u8jf-pjxj-8fey
52
vulnerability VCID-updk-2xum-9bcb
53
vulnerability VCID-w5et-zcp1-zfdb
54
vulnerability VCID-wphf-gk61-8ube
55
vulnerability VCID-wxeg-ygz4-gqbp
56
vulnerability VCID-xdur-8vs8-jfcy
57
vulnerability VCID-xjux-g847-hyb8
58
vulnerability VCID-yrt1-6bhw-nkgk
59
vulnerability VCID-zgvy-31uv-6yax
60
vulnerability VCID-zsz1-bnbj-dkhy
61
vulnerability VCID-zz7z-56e2-nfbh
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.5.0
aliases BIT-mlflow-2023-3765, CVE-2023-3765, GHSA-fmxj-6h9g-6vw3, PYSEC-2023-308
risk_score 10.0
exploitability 2.0
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-r1na-1j6c-vffy
40
url VCID-r8c4-p83a-byf5
vulnerability_id VCID-r8c4-p83a-byf5
summary In mlflow/mlflow version 2.17.2, the `/graphql` endpoint is vulnerable to a denial of service attack. An attacker can create large batches of queries that repeatedly request all runs from a given experiment. This can tie up all the workers allocated by MLFlow, rendering the application unable to respond to other requests. This vulnerability is due to uncontrolled resource consumption.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-0453
reference_id
reference_type
scores
0
value 0.00324
scoring_system epss
scoring_elements 0.55975
published_at 2026-06-12T12:55:00Z
1
value 0.00324
scoring_system epss
scoring_elements 0.55855
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-0453
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-0453
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-0453
3
reference_url https://huntr.com/bounties/788327ec-714a-4d5c-83aa-8df04dd7612b
reference_id 788327ec-714a-4d5c-83aa-8df04dd7612b
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-20T15:51:13Z/
url https://huntr.com/bounties/788327ec-714a-4d5c-83aa-8df04dd7612b
4
reference_url https://github.com/advisories/GHSA-49m6-vrr9-2cqm
reference_id GHSA-49m6-vrr9-2cqm
reference_type
scores
url https://github.com/advisories/GHSA-49m6-vrr9-2cqm
fixed_packages
0
url pkg:pypi/mlflow@2.18.0rc0
purl pkg:pypi/mlflow@2.18.0rc0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-3cb8-9ms7-yyfa
3
vulnerability VCID-4jqc-vp49-2ybf
4
vulnerability VCID-4jya-uh8s-4ycv
5
vulnerability VCID-7ykf-b93e-w7am
6
vulnerability VCID-96az-gdtg-aka8
7
vulnerability VCID-97xj-trtn-g7ah
8
vulnerability VCID-9mak-nkua-3uhr
9
vulnerability VCID-axte-ftrh-4bb7
10
vulnerability VCID-dhjq-g971-kfb4
11
vulnerability VCID-fxtg-yezw-hfhr
12
vulnerability VCID-k79p-ju8g-9bhe
13
vulnerability VCID-kqsy-qu8j-8ugj
14
vulnerability VCID-scm3-63j1-tkf2
15
vulnerability VCID-tnps-h89q-a7hj
16
vulnerability VCID-u8jf-pjxj-8fey
17
vulnerability VCID-w5et-zcp1-zfdb
18
vulnerability VCID-wphf-gk61-8ube
19
vulnerability VCID-xdur-8vs8-jfcy
20
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.18.0rc0
aliases CVE-2025-0453, GHSA-49m6-vrr9-2cqm
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-r8c4-p83a-byf5
41
url VCID-s28h-stan-bqev
vulnerability_id VCID-s28h-stan-bqev
summary In mlflow/mlflow version v2.13.2, a vulnerability exists that allows the creation or renaming of an experiment with a large number of integers in its name due to the lack of a limit on the experiment name. This can cause the MLflow UI panel to become unresponsive, leading to a potential denial of service. Additionally, there is no character limit in the `artifact_location` parameter while creating the experiment.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-6838
reference_id
reference_type
scores
0
value 0.00552
scoring_system epss
scoring_elements 0.68563
published_at 2026-06-12T12:55:00Z
1
value 0.00552
scoring_system epss
scoring_elements 0.68475
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-6838
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-6838
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-6838
3
reference_url https://huntr.com/bounties/8ad52cb2-2cda-4eb0-aec9-586060ee43e0
reference_id 8ad52cb2-2cda-4eb0-aec9-586060ee43e0
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-20T14:25:36Z/
url https://huntr.com/bounties/8ad52cb2-2cda-4eb0-aec9-586060ee43e0
4
reference_url https://github.com/advisories/GHSA-q3gw-8236-5jw4
reference_id GHSA-q3gw-8236-5jw4
reference_type
scores
url https://github.com/advisories/GHSA-q3gw-8236-5jw4
fixed_packages
0
url pkg:pypi/mlflow@2.14.0rc0
purl pkg:pypi/mlflow@2.14.0rc0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-3cb8-9ms7-yyfa
3
vulnerability VCID-4jqc-vp49-2ybf
4
vulnerability VCID-4jya-uh8s-4ycv
5
vulnerability VCID-6mc2-24nz-yqb4
6
vulnerability VCID-7ykf-b93e-w7am
7
vulnerability VCID-96az-gdtg-aka8
8
vulnerability VCID-97xj-trtn-g7ah
9
vulnerability VCID-9mak-nkua-3uhr
10
vulnerability VCID-axte-ftrh-4bb7
11
vulnerability VCID-fxtg-yezw-hfhr
12
vulnerability VCID-k79p-ju8g-9bhe
13
vulnerability VCID-kpds-34mt-b3hf
14
vulnerability VCID-kqsy-qu8j-8ugj
15
vulnerability VCID-r8c4-p83a-byf5
16
vulnerability VCID-scm3-63j1-tkf2
17
vulnerability VCID-tnps-h89q-a7hj
18
vulnerability VCID-u8jf-pjxj-8fey
19
vulnerability VCID-w5et-zcp1-zfdb
20
vulnerability VCID-wphf-gk61-8ube
21
vulnerability VCID-xdur-8vs8-jfcy
22
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.14.0rc0
aliases CVE-2024-6838, GHSA-q3gw-8236-5jw4
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s28h-stan-bqev
42
url VCID-scm3-63j1-tkf2
vulnerability_id VCID-scm3-63j1-tkf2
summary A command injection vulnerability exists in MLflow's model serving container initialization code, specifically in the `_install_model_dependencies_to_env()` function. When deploying a model with `env_manager=LOCAL`, MLflow reads dependency specifications from the model artifact's `python_env.yaml` file and directly interpolates them into a shell command without sanitization. This allows an attacker to supply a malicious model artifact and achieve arbitrary command execution on systems that deploy the model. The vulnerability affects versions 3.8.0 and is fixed in version 3.8.2.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15379.json
reference_id
reference_type
scores
0
value 9.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15379.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-15379
reference_id
reference_type
scores
0
value 0.00281
scoring_system epss
scoring_elements 0.51851
published_at 2026-06-11T12:55:00Z
1
value 0.00281
scoring_system epss
scoring_elements 0.51981
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-15379
2
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
3
reference_url https://github.com/mlflow/mlflow/commit/a22ce7157f646bdce4c95106fc38ccc9ca289205
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/a22ce7157f646bdce4c95106fc38ccc9ca289205
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-15379
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-15379
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2452949
reference_id 2452949
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2452949
6
reference_url https://github.com/mlflow/mlflow/commit/361b6f620adf98385c6721e384fb5ef9a30bb05e
reference_id 361b6f620adf98385c6721e384fb5ef9a30bb05e
reference_type
scores
0
value 10
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
2
value CRITICAL
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-03-31T03:55:37Z/
url https://github.com/mlflow/mlflow/commit/361b6f620adf98385c6721e384fb5ef9a30bb05e
7
reference_url https://huntr.com/bounties/dc9c1c20-7879-4050-87df-4d095fe5ca75
reference_id dc9c1c20-7879-4050-87df-4d095fe5ca75
reference_type
scores
0
value 10
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
2
value CRITICAL
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-03-31T03:55:37Z/
url https://huntr.com/bounties/dc9c1c20-7879-4050-87df-4d095fe5ca75
8
reference_url https://github.com/advisories/GHSA-r23q-823p-vmf7
reference_id GHSA-r23q-823p-vmf7
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-r23q-823p-vmf7
fixed_packages
0
url pkg:pypi/mlflow@3.8.1
purl pkg:pypi/mlflow@3.8.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-4jqc-vp49-2ybf
3
vulnerability VCID-96az-gdtg-aka8
4
vulnerability VCID-9mak-nkua-3uhr
5
vulnerability VCID-axte-ftrh-4bb7
6
vulnerability VCID-fxtg-yezw-hfhr
7
vulnerability VCID-kqsy-qu8j-8ugj
8
vulnerability VCID-scm3-63j1-tkf2
9
vulnerability VCID-wphf-gk61-8ube
10
vulnerability VCID-xdur-8vs8-jfcy
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@3.8.1
1
url pkg:pypi/mlflow@3.9.0rc0
purl pkg:pypi/mlflow@3.9.0rc0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-4jqc-vp49-2ybf
3
vulnerability VCID-96az-gdtg-aka8
4
vulnerability VCID-axte-ftrh-4bb7
5
vulnerability VCID-fxtg-yezw-hfhr
6
vulnerability VCID-kqsy-qu8j-8ugj
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@3.9.0rc0
aliases CVE-2025-15379, GHSA-r23q-823p-vmf7
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-scm3-63j1-tkf2
43
url VCID-sts1-rpu2-y7dv
vulnerability_id VCID-sts1-rpu2-y7dv
summary A path traversal vulnerability exists in the mlflow/mlflow repository, specifically within the artifact deletion functionality. Attackers can bypass path validation by exploiting the double decoding process in the `_delete_artifact_mlflow_artifacts` handler and `local_file_uri_to_path` function, allowing for the deletion of arbitrary directories on the server's filesystem. This vulnerability is due to an extra unquote operation in the `delete_artifacts` function of `local_artifact_repo.py`, which fails to properly sanitize user-supplied paths. The issue is present up to version 2.9.2, despite attempts to fix a similar issue in CVE-2023-6831.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-1560
reference_id
reference_type
scores
0
value 0.00107
scoring_system epss
scoring_elements 0.2859
published_at 2026-06-12T12:55:00Z
1
value 0.00107
scoring_system epss
scoring_elements 0.28394
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-1560
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://huntr.com/bounties/4a34259c-3c8f-4872-b178-f27fbc876b98
reference_id 4a34259c-3c8f-4872-b178-f27fbc876b98
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
1
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-09T19:53:39Z/
url https://huntr.com/bounties/4a34259c-3c8f-4872-b178-f27fbc876b98
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-1560
reference_id CVE-2024-1560
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-1560
4
reference_url https://github.com/advisories/GHSA-5mvj-wmgj-7q8c
reference_id GHSA-5mvj-wmgj-7q8c
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-5mvj-wmgj-7q8c
fixed_packages
0
url pkg:pypi/mlflow@2.10.0
purl pkg:pypi/mlflow@2.10.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2nft-dcgb-53c4
4
vulnerability VCID-3cb8-9ms7-yyfa
5
vulnerability VCID-3t2e-xs79-u7cd
6
vulnerability VCID-4jqc-vp49-2ybf
7
vulnerability VCID-4jya-uh8s-4ycv
8
vulnerability VCID-5qjx-6dd1-kbcw
9
vulnerability VCID-6mc2-24nz-yqb4
10
vulnerability VCID-6twj-wz2n-eyhf
11
vulnerability VCID-7fb9-mjjp-xfax
12
vulnerability VCID-7ykf-b93e-w7am
13
vulnerability VCID-96az-gdtg-aka8
14
vulnerability VCID-97xj-trtn-g7ah
15
vulnerability VCID-9mak-nkua-3uhr
16
vulnerability VCID-ag97-535x-ruha
17
vulnerability VCID-axte-ftrh-4bb7
18
vulnerability VCID-c27j-436j-jucx
19
vulnerability VCID-ea5n-qghr-vffw
20
vulnerability VCID-fhwc-a97g-qbc7
21
vulnerability VCID-fxtg-yezw-hfhr
22
vulnerability VCID-juhn-rya8-ayej
23
vulnerability VCID-k79p-ju8g-9bhe
24
vulnerability VCID-kpds-34mt-b3hf
25
vulnerability VCID-kqsy-qu8j-8ugj
26
vulnerability VCID-p667-62d7-vfgv
27
vulnerability VCID-r8c4-p83a-byf5
28
vulnerability VCID-s28h-stan-bqev
29
vulnerability VCID-scm3-63j1-tkf2
30
vulnerability VCID-tnps-h89q-a7hj
31
vulnerability VCID-tnup-6wcs-pybk
32
vulnerability VCID-u6y9-6vau-nkde
33
vulnerability VCID-u8jf-pjxj-8fey
34
vulnerability VCID-w5et-zcp1-zfdb
35
vulnerability VCID-wphf-gk61-8ube
36
vulnerability VCID-xdur-8vs8-jfcy
37
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.10.0
aliases CVE-2024-1560, GHSA-5mvj-wmgj-7q8c
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sts1-rpu2-y7dv
44
url VCID-tc68-59mt-4qh7
vulnerability_id VCID-tc68-59mt-4qh7
summary A path traversal vulnerability exists in mlflow/mlflow version 2.9.2, allowing attackers to access arbitrary files on the server. By crafting a series of HTTP POST requests with specially crafted 'artifact_location' and 'source' parameters, using a local URI with '#' instead of '?', an attacker can traverse the server's directory structure. The issue occurs due to insufficient validation of user-supplied input in the server's handlers.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-1483
reference_id
reference_type
scores
0
value 0.73937
scoring_system epss
scoring_elements 0.98845
published_at 2026-06-11T12:55:00Z
1
value 0.73937
scoring_system epss
scoring_elements 0.98849
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-1483
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://huntr.com/bounties/52a3855d-93ff-4460-ac24-9c7e4334198d
reference_id 52a3855d-93ff-4460-ac24-9c7e4334198d
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-18T15:18:32Z/
url https://huntr.com/bounties/52a3855d-93ff-4460-ac24-9c7e4334198d
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-1483
reference_id CVE-2024-1483
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-1483
4
reference_url https://github.com/advisories/GHSA-f82r-jj5r-6g97
reference_id GHSA-f82r-jj5r-6g97
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-f82r-jj5r-6g97
fixed_packages
0
url pkg:pypi/mlflow@2.10.0
purl pkg:pypi/mlflow@2.10.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2nft-dcgb-53c4
4
vulnerability VCID-3cb8-9ms7-yyfa
5
vulnerability VCID-3t2e-xs79-u7cd
6
vulnerability VCID-4jqc-vp49-2ybf
7
vulnerability VCID-4jya-uh8s-4ycv
8
vulnerability VCID-5qjx-6dd1-kbcw
9
vulnerability VCID-6mc2-24nz-yqb4
10
vulnerability VCID-6twj-wz2n-eyhf
11
vulnerability VCID-7fb9-mjjp-xfax
12
vulnerability VCID-7ykf-b93e-w7am
13
vulnerability VCID-96az-gdtg-aka8
14
vulnerability VCID-97xj-trtn-g7ah
15
vulnerability VCID-9mak-nkua-3uhr
16
vulnerability VCID-ag97-535x-ruha
17
vulnerability VCID-axte-ftrh-4bb7
18
vulnerability VCID-c27j-436j-jucx
19
vulnerability VCID-ea5n-qghr-vffw
20
vulnerability VCID-fhwc-a97g-qbc7
21
vulnerability VCID-fxtg-yezw-hfhr
22
vulnerability VCID-juhn-rya8-ayej
23
vulnerability VCID-k79p-ju8g-9bhe
24
vulnerability VCID-kpds-34mt-b3hf
25
vulnerability VCID-kqsy-qu8j-8ugj
26
vulnerability VCID-p667-62d7-vfgv
27
vulnerability VCID-r8c4-p83a-byf5
28
vulnerability VCID-s28h-stan-bqev
29
vulnerability VCID-scm3-63j1-tkf2
30
vulnerability VCID-tnps-h89q-a7hj
31
vulnerability VCID-tnup-6wcs-pybk
32
vulnerability VCID-u6y9-6vau-nkde
33
vulnerability VCID-u8jf-pjxj-8fey
34
vulnerability VCID-w5et-zcp1-zfdb
35
vulnerability VCID-wphf-gk61-8ube
36
vulnerability VCID-xdur-8vs8-jfcy
37
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.10.0
1
url pkg:pypi/mlflow@2.12.1
purl pkg:pypi/mlflow@2.12.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2nft-dcgb-53c4
4
vulnerability VCID-3cb8-9ms7-yyfa
5
vulnerability VCID-3t2e-xs79-u7cd
6
vulnerability VCID-4jqc-vp49-2ybf
7
vulnerability VCID-4jya-uh8s-4ycv
8
vulnerability VCID-5qjx-6dd1-kbcw
9
vulnerability VCID-6mc2-24nz-yqb4
10
vulnerability VCID-7ykf-b93e-w7am
11
vulnerability VCID-96az-gdtg-aka8
12
vulnerability VCID-97xj-trtn-g7ah
13
vulnerability VCID-9mak-nkua-3uhr
14
vulnerability VCID-ag97-535x-ruha
15
vulnerability VCID-axte-ftrh-4bb7
16
vulnerability VCID-c27j-436j-jucx
17
vulnerability VCID-ea5n-qghr-vffw
18
vulnerability VCID-fhwc-a97g-qbc7
19
vulnerability VCID-fxtg-yezw-hfhr
20
vulnerability VCID-juhn-rya8-ayej
21
vulnerability VCID-k79p-ju8g-9bhe
22
vulnerability VCID-kpds-34mt-b3hf
23
vulnerability VCID-kqsy-qu8j-8ugj
24
vulnerability VCID-r8c4-p83a-byf5
25
vulnerability VCID-s28h-stan-bqev
26
vulnerability VCID-scm3-63j1-tkf2
27
vulnerability VCID-tnps-h89q-a7hj
28
vulnerability VCID-u6y9-6vau-nkde
29
vulnerability VCID-u8jf-pjxj-8fey
30
vulnerability VCID-w5et-zcp1-zfdb
31
vulnerability VCID-wphf-gk61-8ube
32
vulnerability VCID-xdur-8vs8-jfcy
33
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.12.1
aliases CVE-2024-1483, GHSA-f82r-jj5r-6g97
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tc68-59mt-4qh7
45
url VCID-tnps-h89q-a7hj
vulnerability_id VCID-tnps-h89q-a7hj
summary A command injection vulnerability exists in mlflow/mlflow versions before v3.7.0, specifically in the `mlflow/sagemaker/__init__.py` file at lines 161-167. The vulnerability arises from the direct interpolation of user-supplied container image names into shell commands without proper sanitization, which are then executed using `os.system()`. This allows attackers to execute arbitrary commands by supplying malicious input through the `--container` parameter of the CLI. The issue affects environments where MLflow is used, including development setups, CI/CD pipelines, and cloud deployments.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-14287.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-14287.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-14287
reference_id
reference_type
scores
0
value 0.0034
scoring_system epss
scoring_elements 0.5719
published_at 2026-06-12T12:55:00Z
1
value 0.0034
scoring_system epss
scoring_elements 0.57072
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-14287
2
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
3
reference_url https://github.com/mlflow/mlflow/commit/8b8792a7034fb33a14b0b31cabcaa9b912d3485f
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/8b8792a7034fb33a14b0b31cabcaa9b912d3485f
4
reference_url https://github.com/mlflow/mlflow/pull/19277
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/pull/19277
5
reference_url https://github.com/mlflow/mlflow/releases/tag/v3.8.0rc0
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/releases/tag/v3.8.0rc0
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-14287
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-14287
7
reference_url https://huntr.com/bounties/229cd526-41aa-4819-b6f0-e2d0371c89e3
reference_id 229cd526-41aa-4819-b6f0-e2d0371c89e3
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-03-17T03:55:37Z/
url https://huntr.com/bounties/229cd526-41aa-4819-b6f0-e2d0371c89e3
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2447690
reference_id 2447690
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2447690
9
reference_url https://github.com/advisories/GHSA-xch3-2f9x-wh9f
reference_id GHSA-xch3-2f9x-wh9f
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-xch3-2f9x-wh9f
fixed_packages
0
url pkg:pypi/mlflow@3.8.0rc0
purl pkg:pypi/mlflow@3.8.0rc0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-4jqc-vp49-2ybf
3
vulnerability VCID-96az-gdtg-aka8
4
vulnerability VCID-9mak-nkua-3uhr
5
vulnerability VCID-axte-ftrh-4bb7
6
vulnerability VCID-fxtg-yezw-hfhr
7
vulnerability VCID-kqsy-qu8j-8ugj
8
vulnerability VCID-scm3-63j1-tkf2
9
vulnerability VCID-wphf-gk61-8ube
10
vulnerability VCID-xdur-8vs8-jfcy
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@3.8.0rc0
aliases CVE-2025-14287, GHSA-xch3-2f9x-wh9f
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tnps-h89q-a7hj
46
url VCID-tnup-6wcs-pybk
vulnerability_id VCID-tnup-6wcs-pybk
summary A Local File Inclusion (LFI) vulnerability was identified in mlflow/mlflow, specifically in version 2.9.2, which was fixed in version 2.11.3. This vulnerability arises from the application's failure to properly validate URI fragments for directory traversal sequences such as '../'. An attacker can exploit this flaw by manipulating the fragment part of the URI to read arbitrary files on the local file system, including sensitive files like '/etc/passwd'. The vulnerability is a bypass to a previous patch that only addressed similar manipulation within the URI's query string, highlighting the need for comprehensive validation of all parts of a URI to prevent LFI attacks.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-2928
reference_id
reference_type
scores
0
value 0.91163
scoring_system epss
scoring_elements 0.99666
published_at 2026-06-12T12:55:00Z
1
value 0.91163
scoring_system epss
scoring_elements 0.99665
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-2928
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2024-242.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2024-242.yaml
3
reference_url https://huntr.com/bounties/19bf02d7-6393-4a95-b9d0-d6d4d2d8c298
reference_id 19bf02d7-6393-4a95-b9d0-d6d4d2d8c298
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-06T19:39:18Z/
url https://huntr.com/bounties/19bf02d7-6393-4a95-b9d0-d6d4d2d8c298
4
reference_url https://github.com/mlflow/mlflow/commit/96f0b573a73d8eedd6735a2ce26e08859527be07
reference_id 96f0b573a73d8eedd6735a2ce26e08859527be07
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-06T19:39:18Z/
url https://github.com/mlflow/mlflow/commit/96f0b573a73d8eedd6735a2ce26e08859527be07
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-2928
reference_id CVE-2024-2928
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-2928
6
reference_url https://github.com/advisories/GHSA-j46q-5pxx-8vmw
reference_id GHSA-j46q-5pxx-8vmw
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-j46q-5pxx-8vmw
fixed_packages
0
url pkg:pypi/mlflow@2.11.3
purl pkg:pypi/mlflow@2.11.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2nft-dcgb-53c4
4
vulnerability VCID-3cb8-9ms7-yyfa
5
vulnerability VCID-3t2e-xs79-u7cd
6
vulnerability VCID-4jqc-vp49-2ybf
7
vulnerability VCID-4jya-uh8s-4ycv
8
vulnerability VCID-5qjx-6dd1-kbcw
9
vulnerability VCID-6mc2-24nz-yqb4
10
vulnerability VCID-7fb9-mjjp-xfax
11
vulnerability VCID-7ykf-b93e-w7am
12
vulnerability VCID-96az-gdtg-aka8
13
vulnerability VCID-97xj-trtn-g7ah
14
vulnerability VCID-9mak-nkua-3uhr
15
vulnerability VCID-ag97-535x-ruha
16
vulnerability VCID-axte-ftrh-4bb7
17
vulnerability VCID-c27j-436j-jucx
18
vulnerability VCID-ea5n-qghr-vffw
19
vulnerability VCID-fhwc-a97g-qbc7
20
vulnerability VCID-fxtg-yezw-hfhr
21
vulnerability VCID-juhn-rya8-ayej
22
vulnerability VCID-k79p-ju8g-9bhe
23
vulnerability VCID-kpds-34mt-b3hf
24
vulnerability VCID-kqsy-qu8j-8ugj
25
vulnerability VCID-r8c4-p83a-byf5
26
vulnerability VCID-s28h-stan-bqev
27
vulnerability VCID-scm3-63j1-tkf2
28
vulnerability VCID-tnps-h89q-a7hj
29
vulnerability VCID-u6y9-6vau-nkde
30
vulnerability VCID-u8jf-pjxj-8fey
31
vulnerability VCID-w5et-zcp1-zfdb
32
vulnerability VCID-wphf-gk61-8ube
33
vulnerability VCID-xdur-8vs8-jfcy
34
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.11.3
aliases BIT-mlflow-2024-2928, CVE-2024-2928, GHSA-j46q-5pxx-8vmw, PYSEC-2024-242
risk_score 10.0
exploitability 2.0
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tnup-6wcs-pybk
47
url VCID-ttwk-xeub-ebfy
vulnerability_id VCID-ttwk-xeub-ebfy
summary 
Insufficient sanitization in MLflow leads to XSS when running an untrusted recipe.

This issue leads to a client-side RCE when running an untrusted recipe in Jupyter Notebook.

The vulnerability stems from lack of sanitization over template variables.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-27132
reference_id
reference_type
scores
0
value 0.00243
scoring_system epss
scoring_elements 0.47918
published_at 2026-06-12T12:55:00Z
1
value 0.00243
scoring_system epss
scoring_elements 0.47778
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-27132
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2024-240.yaml
reference_id
reference_type
scores
0
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2024-240.yaml
3
reference_url https://research.jfrog.com/vulnerabilities/mlflow-untrusted-recipe-xss-jfsa-2024-000631930
reference_id
reference_type
scores
0
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://research.jfrog.com/vulnerabilities/mlflow-untrusted-recipe-xss-jfsa-2024-000631930
4
reference_url https://github.com/mlflow/mlflow/pull/10873
reference_id 10873
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
2
value CRITICAL
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-14T15:25:41Z/
url https://github.com/mlflow/mlflow/pull/10873
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-27132
reference_id CVE-2024-27132
reference_type
scores
0
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-27132
6
reference_url https://github.com/advisories/GHSA-6749-m5cp-6cg7
reference_id GHSA-6749-m5cp-6cg7
reference_type
scores
0
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-6749-m5cp-6cg7
7
reference_url https://research.jfrog.com/vulnerabilities/mlflow-untrusted-recipe-xss-jfsa-2024-000631930/
reference_id mlflow-untrusted-recipe-xss-jfsa-2024-000631930
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
2
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-14T15:25:41Z/
url https://research.jfrog.com/vulnerabilities/mlflow-untrusted-recipe-xss-jfsa-2024-000631930/
fixed_packages
0
url pkg:pypi/mlflow@2.10.0
purl pkg:pypi/mlflow@2.10.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2nft-dcgb-53c4
4
vulnerability VCID-3cb8-9ms7-yyfa
5
vulnerability VCID-3t2e-xs79-u7cd
6
vulnerability VCID-4jqc-vp49-2ybf
7
vulnerability VCID-4jya-uh8s-4ycv
8
vulnerability VCID-5qjx-6dd1-kbcw
9
vulnerability VCID-6mc2-24nz-yqb4
10
vulnerability VCID-6twj-wz2n-eyhf
11
vulnerability VCID-7fb9-mjjp-xfax
12
vulnerability VCID-7ykf-b93e-w7am
13
vulnerability VCID-96az-gdtg-aka8
14
vulnerability VCID-97xj-trtn-g7ah
15
vulnerability VCID-9mak-nkua-3uhr
16
vulnerability VCID-ag97-535x-ruha
17
vulnerability VCID-axte-ftrh-4bb7
18
vulnerability VCID-c27j-436j-jucx
19
vulnerability VCID-ea5n-qghr-vffw
20
vulnerability VCID-fhwc-a97g-qbc7
21
vulnerability VCID-fxtg-yezw-hfhr
22
vulnerability VCID-juhn-rya8-ayej
23
vulnerability VCID-k79p-ju8g-9bhe
24
vulnerability VCID-kpds-34mt-b3hf
25
vulnerability VCID-kqsy-qu8j-8ugj
26
vulnerability VCID-p667-62d7-vfgv
27
vulnerability VCID-r8c4-p83a-byf5
28
vulnerability VCID-s28h-stan-bqev
29
vulnerability VCID-scm3-63j1-tkf2
30
vulnerability VCID-tnps-h89q-a7hj
31
vulnerability VCID-tnup-6wcs-pybk
32
vulnerability VCID-u6y9-6vau-nkde
33
vulnerability VCID-u8jf-pjxj-8fey
34
vulnerability VCID-w5et-zcp1-zfdb
35
vulnerability VCID-wphf-gk61-8ube
36
vulnerability VCID-xdur-8vs8-jfcy
37
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.10.0
aliases BIT-mlflow-2024-27132, CVE-2024-27132, GHSA-6749-m5cp-6cg7, PYSEC-2024-240
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ttwk-xeub-ebfy
48
url VCID-u2ec-h9n9-x7hd
vulnerability_id VCID-u2ec-h9n9-x7hd
summary 
Remote file access vulnerability in `mlflow server` and `mlflow ui` CLIs
### Impact

Users of the MLflow Open Source Project who are hosting the MLflow Model Registry using the ``mlflow server`` or ``mlflow ui`` commands using an MLflow version older than **MLflow 2.3.1** may be vulnerable to a remote file access exploit if they are not limiting who can query their server (for example, by using a cloud VPC, an IP allowlist for inbound requests, or authentication / authorization middleware).

This issue only affects users and integrations that run the ``mlflow server`` and ``mlflow ui`` commands. Integrations that do not make use of ``mlflow server`` or ``mlflow ui`` are unaffected; for example, the Databricks Managed MLflow product and MLflow on Azure Machine Learning do not make use of these commands and are not impacted by these vulnerabilities in any way.

The vulnerability is very similar to https://nvd.nist.gov/vuln/detail/CVE-2023-1177, and a separate CVE will be published and updated here shortly.

### Patches

This vulnerability has been patched in MLflow 2.3.1, which was released to PyPI on April 27th, 2023. If you are using ``mlflow server`` or ``mlflow ui`` with the MLflow Model Registry, we recommend upgrading to MLflow 2.3.1 as soon as possible.

### Workarounds
If you are using the MLflow open source ``mlflow server`` or ``mlflow ui`` commands, we strongly recommend limiting who can access your MLflow Model Registry and MLflow Tracking servers using a cloud VPC, an IP allowlist for inbound requests, authentication / authorization middleware, or another access restriction mechanism of your choosing.

If you are using the MLflow open source ``mlflow server`` or ``mlflow ui`` commands, we also strongly recommend limiting the remote files to which your MLflow Model Registry and MLflow Tracking servers have access. For example, if your MLflow Model Registry or MLflow Tracking server uses cloud-hosted blob storage for MLflow artifacts, make sure to restrict the scope of your server's cloud credentials such that it can only access files and directories related to MLflow.

### References
references
0
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
1
reference_url https://github.com/mlflow/mlflow/security/advisories/GHSA-83fm-w79m-64r5
reference_id
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/security/advisories/GHSA-83fm-w79m-64r5
2
reference_url https://github.com/advisories/GHSA-83fm-w79m-64r5
reference_id GHSA-83fm-w79m-64r5
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-83fm-w79m-64r5
fixed_packages
0
url pkg:pypi/mlflow@2.3.1
purl pkg:pypi/mlflow@2.3.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-1sau-auws-mfcs
3
vulnerability VCID-24ct-fu3q-gbgj
4
vulnerability VCID-2hc7-ant5-qkcu
5
vulnerability VCID-2nft-dcgb-53c4
6
vulnerability VCID-2pjc-1kqa-1ygp
7
vulnerability VCID-2ujt-4vpx-6khr
8
vulnerability VCID-34mw-41t1-m7a9
9
vulnerability VCID-3cb8-9ms7-yyfa
10
vulnerability VCID-3ugt-4ygk-n3b1
11
vulnerability VCID-4jqc-vp49-2ybf
12
vulnerability VCID-4jya-uh8s-4ycv
13
vulnerability VCID-5qjx-6dd1-kbcw
14
vulnerability VCID-6dra-6783-pqg1
15
vulnerability VCID-6mc2-24nz-yqb4
16
vulnerability VCID-6twj-wz2n-eyhf
17
vulnerability VCID-74wr-ebmk-dugn
18
vulnerability VCID-7fb9-mjjp-xfax
19
vulnerability VCID-7hh6-6gv3-tyeg
20
vulnerability VCID-7ykf-b93e-w7am
21
vulnerability VCID-8gmy-kvc8-9fh6
22
vulnerability VCID-96az-gdtg-aka8
23
vulnerability VCID-97xj-trtn-g7ah
24
vulnerability VCID-9mak-nkua-3uhr
25
vulnerability VCID-9prk-73hp-e3dc
26
vulnerability VCID-ag97-535x-ruha
27
vulnerability VCID-axte-ftrh-4bb7
28
vulnerability VCID-c27j-436j-jucx
29
vulnerability VCID-dsmz-t3wg-cbbg
30
vulnerability VCID-ea5n-qghr-vffw
31
vulnerability VCID-fhwc-a97g-qbc7
32
vulnerability VCID-fxtg-yezw-hfhr
33
vulnerability VCID-g4sh-cbk2-dkd7
34
vulnerability VCID-juhn-rya8-ayej
35
vulnerability VCID-k79p-ju8g-9bhe
36
vulnerability VCID-kpds-34mt-b3hf
37
vulnerability VCID-kqsy-qu8j-8ugj
38
vulnerability VCID-m4yj-ast4-e3eh
39
vulnerability VCID-p667-62d7-vfgv
40
vulnerability VCID-qcxq-51sr-9bh4
41
vulnerability VCID-r1na-1j6c-vffy
42
vulnerability VCID-r8c4-p83a-byf5
43
vulnerability VCID-s28h-stan-bqev
44
vulnerability VCID-scm3-63j1-tkf2
45
vulnerability VCID-sts1-rpu2-y7dv
46
vulnerability VCID-tc68-59mt-4qh7
47
vulnerability VCID-tnps-h89q-a7hj
48
vulnerability VCID-tnup-6wcs-pybk
49
vulnerability VCID-ttwk-xeub-ebfy
50
vulnerability VCID-u6y9-6vau-nkde
51
vulnerability VCID-u8jf-pjxj-8fey
52
vulnerability VCID-updk-2xum-9bcb
53
vulnerability VCID-w5et-zcp1-zfdb
54
vulnerability VCID-wphf-gk61-8ube
55
vulnerability VCID-wxeg-ygz4-gqbp
56
vulnerability VCID-xdur-8vs8-jfcy
57
vulnerability VCID-xjux-g847-hyb8
58
vulnerability VCID-yrt1-6bhw-nkgk
59
vulnerability VCID-zgvy-31uv-6yax
60
vulnerability VCID-zsz1-bnbj-dkhy
61
vulnerability VCID-zz7z-56e2-nfbh
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.3.1
aliases GHSA-83fm-w79m-64r5, GMS-2023-1305
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-u2ec-h9n9-x7hd
49
url VCID-u8jf-pjxj-8fey
vulnerability_id VCID-u8jf-pjxj-8fey
summary In mlflow/mlflow version 2.18, an admin is able to create a new user account without setting a password. This vulnerability could lead to security risks, as accounts without passwords may be susceptible to unauthorized access. Additionally, this issue violates best practices for secure user account management. The issue is fixed in version 2.19.0.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-1474
reference_id
reference_type
scores
0
value 0.00104
scoring_system epss
scoring_elements 0.2812
published_at 2026-06-12T12:55:00Z
1
value 0.00104
scoring_system epss
scoring_elements 0.27922
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-1474
1
reference_url https://github.com/advisories/GHSA-4rj2-9gcx-5qhx
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:N
url https://github.com/advisories/GHSA-4rj2-9gcx-5qhx
2
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 3.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
3
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2025-17.yaml
reference_id
reference_type
scores
0
value 3.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2025-17.yaml
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-1474
reference_id
reference_type
scores
0
value 3.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-1474
5
reference_url https://github.com/mlflow/mlflow/commit/149c9e18aa219bc47e86b432e130e467a36f4a17
reference_id 149c9e18aa219bc47e86b432e130e467a36f4a17
reference_type
scores
0
value 3.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N
1
value 3.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N
2
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:N
3
value LOW
scoring_system generic_textual
scoring_elements
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-20T17:48:58Z/
url https://github.com/mlflow/mlflow/commit/149c9e18aa219bc47e86b432e130e467a36f4a17
6
reference_url https://huntr.com/bounties/e79f7774-10fe-46b2-b522-e73b748e3b2d
reference_id e79f7774-10fe-46b2-b522-e73b748e3b2d
reference_type
scores
0
value 3.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N
1
value 3.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N
2
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:N
3
value LOW
scoring_system generic_textual
scoring_elements
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-20T17:48:58Z/
url https://huntr.com/bounties/e79f7774-10fe-46b2-b522-e73b748e3b2d
fixed_packages
0
url pkg:pypi/mlflow@2.19.0
purl pkg:pypi/mlflow@2.19.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-3cb8-9ms7-yyfa
3
vulnerability VCID-4jqc-vp49-2ybf
4
vulnerability VCID-4jya-uh8s-4ycv
5
vulnerability VCID-7ykf-b93e-w7am
6
vulnerability VCID-96az-gdtg-aka8
7
vulnerability VCID-97xj-trtn-g7ah
8
vulnerability VCID-9mak-nkua-3uhr
9
vulnerability VCID-axte-ftrh-4bb7
10
vulnerability VCID-dhjq-g971-kfb4
11
vulnerability VCID-fxtg-yezw-hfhr
12
vulnerability VCID-k79p-ju8g-9bhe
13
vulnerability VCID-kqsy-qu8j-8ugj
14
vulnerability VCID-scm3-63j1-tkf2
15
vulnerability VCID-tnps-h89q-a7hj
16
vulnerability VCID-w5et-zcp1-zfdb
17
vulnerability VCID-wphf-gk61-8ube
18
vulnerability VCID-xdur-8vs8-jfcy
19
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.19.0
aliases BIT-mlflow-2025-1474, CVE-2025-1474, GHSA-4rj2-9gcx-5qhx, PYSEC-2025-17
risk_score 2.5
exploitability 0.5
weighted_severity 5.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-u8jf-pjxj-8fey
50
url VCID-updk-2xum-9bcb
vulnerability_id VCID-updk-2xum-9bcb
summary Insufficient sanitization in MLflow leads to XSS when running a recipe that uses an untrusted dataset. This issue leads to a client-side RCE when running the recipe in Jupyter Notebook. The vulnerability stems from lack of sanitization over dataset table fields.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-27133
reference_id
reference_type
scores
0
value 0.00204
scoring_system epss
scoring_elements 0.42751
published_at 2026-06-12T12:55:00Z
1
value 0.00204
scoring_system epss
scoring_elements 0.42589
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-27133
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://github.com/mlflow/mlflow/commit/c43823750bffa5b6abcc086683b15a068513b67b
reference_id
reference_type
scores
0
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/c43823750bffa5b6abcc086683b15a068513b67b
3
reference_url https://github.com/mlflow/mlflow/commit/cfa71879a884cc3520e23ccab998c9aa78fdf2b1
reference_id
reference_type
scores
0
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/cfa71879a884cc3520e23ccab998c9aa78fdf2b1
4
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2024-241.yaml
reference_id
reference_type
scores
0
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2024-241.yaml
5
reference_url https://research.jfrog.com/vulnerabilities/mlflow-untrusted-dataset-xss-jfsa-2024-000631932
reference_id
reference_type
scores
0
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://research.jfrog.com/vulnerabilities/mlflow-untrusted-dataset-xss-jfsa-2024-000631932
6
reference_url https://github.com/mlflow/mlflow/pull/10893
reference_id 10893
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
2
value CRITICAL
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-27T15:45:19Z/
url https://github.com/mlflow/mlflow/pull/10893
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-27133
reference_id CVE-2024-27133
reference_type
scores
0
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-27133
8
reference_url https://github.com/advisories/GHSA-3v79-q7ph-j75h
reference_id GHSA-3v79-q7ph-j75h
reference_type
scores
0
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-3v79-q7ph-j75h
9
reference_url https://research.jfrog.com/vulnerabilities/mlflow-untrusted-dataset-xss-jfsa-2024-000631932/
reference_id mlflow-untrusted-dataset-xss-jfsa-2024-000631932
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-27T15:45:19Z/
url https://research.jfrog.com/vulnerabilities/mlflow-untrusted-dataset-xss-jfsa-2024-000631932/
fixed_packages
0
url pkg:pypi/mlflow@2.10.0
purl pkg:pypi/mlflow@2.10.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2nft-dcgb-53c4
4
vulnerability VCID-3cb8-9ms7-yyfa
5
vulnerability VCID-3t2e-xs79-u7cd
6
vulnerability VCID-4jqc-vp49-2ybf
7
vulnerability VCID-4jya-uh8s-4ycv
8
vulnerability VCID-5qjx-6dd1-kbcw
9
vulnerability VCID-6mc2-24nz-yqb4
10
vulnerability VCID-6twj-wz2n-eyhf
11
vulnerability VCID-7fb9-mjjp-xfax
12
vulnerability VCID-7ykf-b93e-w7am
13
vulnerability VCID-96az-gdtg-aka8
14
vulnerability VCID-97xj-trtn-g7ah
15
vulnerability VCID-9mak-nkua-3uhr
16
vulnerability VCID-ag97-535x-ruha
17
vulnerability VCID-axte-ftrh-4bb7
18
vulnerability VCID-c27j-436j-jucx
19
vulnerability VCID-ea5n-qghr-vffw
20
vulnerability VCID-fhwc-a97g-qbc7
21
vulnerability VCID-fxtg-yezw-hfhr
22
vulnerability VCID-juhn-rya8-ayej
23
vulnerability VCID-k79p-ju8g-9bhe
24
vulnerability VCID-kpds-34mt-b3hf
25
vulnerability VCID-kqsy-qu8j-8ugj
26
vulnerability VCID-p667-62d7-vfgv
27
vulnerability VCID-r8c4-p83a-byf5
28
vulnerability VCID-s28h-stan-bqev
29
vulnerability VCID-scm3-63j1-tkf2
30
vulnerability VCID-tnps-h89q-a7hj
31
vulnerability VCID-tnup-6wcs-pybk
32
vulnerability VCID-u6y9-6vau-nkde
33
vulnerability VCID-u8jf-pjxj-8fey
34
vulnerability VCID-w5et-zcp1-zfdb
35
vulnerability VCID-wphf-gk61-8ube
36
vulnerability VCID-xdur-8vs8-jfcy
37
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.10.0
aliases BIT-mlflow-2024-27133, CVE-2024-27133, GHSA-3v79-q7ph-j75h, PYSEC-2024-241
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-updk-2xum-9bcb
51
url VCID-vgqk-x7vx-mbbw
vulnerability_id VCID-vgqk-x7vx-mbbw
summary A directory traversal vulnerability in the /get-artifact API method of the mlflow platform up to v2.0.1 allows attackers to read arbitrary files on the server via the path parameter.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-30172
reference_id
reference_type
scores
0
value 0.0025
scoring_system epss
scoring_elements 0.48645
published_at 2026-06-12T12:55:00Z
1
value 0.0025
scoring_system epss
scoring_elements 0.48507
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-30172
1
reference_url https://github.com/advisories/GHSA-wc6j-5g83-xfm6
reference_id
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-wc6j-5g83-xfm6
2
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
3
reference_url https://github.com/mlflow/mlflow/commit/ac4b697bb0bb8a331944dca63f4235b4bf602ab8
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/ac4b697bb0bb8a331944dca63f4235b4bf602ab8
4
reference_url https://github.com/mlflow/mlflow/commits/v2.0.0?after=00c3b0a350a28c25b16fbb7feddb8147a919ce18+69&branch=v2.0.0&qualified_name=refs%2Ftags%2Fv2.0.0
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commits/v2.0.0?after=00c3b0a350a28c25b16fbb7feddb8147a919ce18+69&branch=v2.0.0&qualified_name=refs%2Ftags%2Fv2.0.0
5
reference_url https://github.com/mlflow/mlflow/pull/7170
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/pull/7170
6
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2023-70.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2023-70.yaml
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-30172
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-30172
8
reference_url https://github.com/mlflow/mlflow/issues/7166
reference_id 7166
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-27T16:51:22Z/
url https://github.com/mlflow/mlflow/issues/7166
9
reference_url https://github.com/mlflow/mlflow/issues/7166#issuecomment-1541543234
reference_id 7166#issuecomment-1541543234
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-27T16:51:22Z/
url https://github.com/mlflow/mlflow/issues/7166#issuecomment-1541543234
fixed_packages
0
url pkg:pypi/mlflow@2.0.0rc0
purl pkg:pypi/mlflow@2.0.0rc0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-1sau-auws-mfcs
3
vulnerability VCID-24ct-fu3q-gbgj
4
vulnerability VCID-2hc7-ant5-qkcu
5
vulnerability VCID-2nft-dcgb-53c4
6
vulnerability VCID-2pjc-1kqa-1ygp
7
vulnerability VCID-2ujt-4vpx-6khr
8
vulnerability VCID-34mw-41t1-m7a9
9
vulnerability VCID-37nb-rkj6-e7h9
10
vulnerability VCID-3cb8-9ms7-yyfa
11
vulnerability VCID-3ugt-4ygk-n3b1
12
vulnerability VCID-4jqc-vp49-2ybf
13
vulnerability VCID-4jya-uh8s-4ycv
14
vulnerability VCID-5qjx-6dd1-kbcw
15
vulnerability VCID-6dra-6783-pqg1
16
vulnerability VCID-6mc2-24nz-yqb4
17
vulnerability VCID-6twj-wz2n-eyhf
18
vulnerability VCID-74wr-ebmk-dugn
19
vulnerability VCID-7fb9-mjjp-xfax
20
vulnerability VCID-7hh6-6gv3-tyeg
21
vulnerability VCID-7ykf-b93e-w7am
22
vulnerability VCID-8gmy-kvc8-9fh6
23
vulnerability VCID-96az-gdtg-aka8
24
vulnerability VCID-97xj-trtn-g7ah
25
vulnerability VCID-9mak-nkua-3uhr
26
vulnerability VCID-9prk-73hp-e3dc
27
vulnerability VCID-ag97-535x-ruha
28
vulnerability VCID-axte-ftrh-4bb7
29
vulnerability VCID-c27j-436j-jucx
30
vulnerability VCID-dsmz-t3wg-cbbg
31
vulnerability VCID-dte3-gwkt-yyct
32
vulnerability VCID-ea5n-qghr-vffw
33
vulnerability VCID-fhwc-a97g-qbc7
34
vulnerability VCID-fxtg-yezw-hfhr
35
vulnerability VCID-g4sh-cbk2-dkd7
36
vulnerability VCID-juhn-rya8-ayej
37
vulnerability VCID-k79p-ju8g-9bhe
38
vulnerability VCID-kpds-34mt-b3hf
39
vulnerability VCID-kqsy-qu8j-8ugj
40
vulnerability VCID-m4yj-ast4-e3eh
41
vulnerability VCID-n8p5-749r-rqdu
42
vulnerability VCID-p667-62d7-vfgv
43
vulnerability VCID-qcxq-51sr-9bh4
44
vulnerability VCID-r1na-1j6c-vffy
45
vulnerability VCID-r8c4-p83a-byf5
46
vulnerability VCID-s28h-stan-bqev
47
vulnerability VCID-scm3-63j1-tkf2
48
vulnerability VCID-sts1-rpu2-y7dv
49
vulnerability VCID-tc68-59mt-4qh7
50
vulnerability VCID-tnps-h89q-a7hj
51
vulnerability VCID-tnup-6wcs-pybk
52
vulnerability VCID-ttwk-xeub-ebfy
53
vulnerability VCID-u2ec-h9n9-x7hd
54
vulnerability VCID-u6y9-6vau-nkde
55
vulnerability VCID-u8jf-pjxj-8fey
56
vulnerability VCID-updk-2xum-9bcb
57
vulnerability VCID-vgqk-x7vx-mbbw
58
vulnerability VCID-vtmk-7xbe-afbe
59
vulnerability VCID-w5et-zcp1-zfdb
60
vulnerability VCID-wphf-gk61-8ube
61
vulnerability VCID-wxeg-ygz4-gqbp
62
vulnerability VCID-xdur-8vs8-jfcy
63
vulnerability VCID-xjux-g847-hyb8
64
vulnerability VCID-yrt1-6bhw-nkgk
65
vulnerability VCID-zgvy-31uv-6yax
66
vulnerability VCID-zsz1-bnbj-dkhy
67
vulnerability VCID-zz7z-56e2-nfbh
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.0.0rc0
1
url pkg:pypi/mlflow@2.0.0
purl pkg:pypi/mlflow@2.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-1sau-auws-mfcs
3
vulnerability VCID-24ct-fu3q-gbgj
4
vulnerability VCID-2hc7-ant5-qkcu
5
vulnerability VCID-2nft-dcgb-53c4
6
vulnerability VCID-2pjc-1kqa-1ygp
7
vulnerability VCID-2ujt-4vpx-6khr
8
vulnerability VCID-34mw-41t1-m7a9
9
vulnerability VCID-37nb-rkj6-e7h9
10
vulnerability VCID-3cb8-9ms7-yyfa
11
vulnerability VCID-3ugt-4ygk-n3b1
12
vulnerability VCID-4jqc-vp49-2ybf
13
vulnerability VCID-4jya-uh8s-4ycv
14
vulnerability VCID-5qjx-6dd1-kbcw
15
vulnerability VCID-6dra-6783-pqg1
16
vulnerability VCID-6mc2-24nz-yqb4
17
vulnerability VCID-6twj-wz2n-eyhf
18
vulnerability VCID-74wr-ebmk-dugn
19
vulnerability VCID-7fb9-mjjp-xfax
20
vulnerability VCID-7hh6-6gv3-tyeg
21
vulnerability VCID-7ykf-b93e-w7am
22
vulnerability VCID-8gmy-kvc8-9fh6
23
vulnerability VCID-96az-gdtg-aka8
24
vulnerability VCID-97xj-trtn-g7ah
25
vulnerability VCID-9mak-nkua-3uhr
26
vulnerability VCID-9prk-73hp-e3dc
27
vulnerability VCID-ag97-535x-ruha
28
vulnerability VCID-axte-ftrh-4bb7
29
vulnerability VCID-c27j-436j-jucx
30
vulnerability VCID-dsmz-t3wg-cbbg
31
vulnerability VCID-dte3-gwkt-yyct
32
vulnerability VCID-ea5n-qghr-vffw
33
vulnerability VCID-fhwc-a97g-qbc7
34
vulnerability VCID-fxtg-yezw-hfhr
35
vulnerability VCID-g4sh-cbk2-dkd7
36
vulnerability VCID-juhn-rya8-ayej
37
vulnerability VCID-k79p-ju8g-9bhe
38
vulnerability VCID-kpds-34mt-b3hf
39
vulnerability VCID-kqsy-qu8j-8ugj
40
vulnerability VCID-m4yj-ast4-e3eh
41
vulnerability VCID-n8p5-749r-rqdu
42
vulnerability VCID-p667-62d7-vfgv
43
vulnerability VCID-qcxq-51sr-9bh4
44
vulnerability VCID-r1na-1j6c-vffy
45
vulnerability VCID-r8c4-p83a-byf5
46
vulnerability VCID-s28h-stan-bqev
47
vulnerability VCID-scm3-63j1-tkf2
48
vulnerability VCID-sts1-rpu2-y7dv
49
vulnerability VCID-tc68-59mt-4qh7
50
vulnerability VCID-tnps-h89q-a7hj
51
vulnerability VCID-tnup-6wcs-pybk
52
vulnerability VCID-ttwk-xeub-ebfy
53
vulnerability VCID-u2ec-h9n9-x7hd
54
vulnerability VCID-u6y9-6vau-nkde
55
vulnerability VCID-u8jf-pjxj-8fey
56
vulnerability VCID-updk-2xum-9bcb
57
vulnerability VCID-vgqk-x7vx-mbbw
58
vulnerability VCID-vtmk-7xbe-afbe
59
vulnerability VCID-w5et-zcp1-zfdb
60
vulnerability VCID-wphf-gk61-8ube
61
vulnerability VCID-wxeg-ygz4-gqbp
62
vulnerability VCID-xdur-8vs8-jfcy
63
vulnerability VCID-xjux-g847-hyb8
64
vulnerability VCID-yrt1-6bhw-nkgk
65
vulnerability VCID-zgvy-31uv-6yax
66
vulnerability VCID-zsz1-bnbj-dkhy
67
vulnerability VCID-zz7z-56e2-nfbh
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.0.0
2
url pkg:pypi/mlflow@2.0.1
purl pkg:pypi/mlflow@2.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-1sau-auws-mfcs
3
vulnerability VCID-24ct-fu3q-gbgj
4
vulnerability VCID-2hc7-ant5-qkcu
5
vulnerability VCID-2nft-dcgb-53c4
6
vulnerability VCID-2pjc-1kqa-1ygp
7
vulnerability VCID-2ujt-4vpx-6khr
8
vulnerability VCID-34mw-41t1-m7a9
9
vulnerability VCID-37nb-rkj6-e7h9
10
vulnerability VCID-3cb8-9ms7-yyfa
11
vulnerability VCID-3ugt-4ygk-n3b1
12
vulnerability VCID-4jqc-vp49-2ybf
13
vulnerability VCID-4jya-uh8s-4ycv
14
vulnerability VCID-5qjx-6dd1-kbcw
15
vulnerability VCID-6dra-6783-pqg1
16
vulnerability VCID-6mc2-24nz-yqb4
17
vulnerability VCID-6twj-wz2n-eyhf
18
vulnerability VCID-74wr-ebmk-dugn
19
vulnerability VCID-7fb9-mjjp-xfax
20
vulnerability VCID-7hh6-6gv3-tyeg
21
vulnerability VCID-7ykf-b93e-w7am
22
vulnerability VCID-8gmy-kvc8-9fh6
23
vulnerability VCID-96az-gdtg-aka8
24
vulnerability VCID-97xj-trtn-g7ah
25
vulnerability VCID-9mak-nkua-3uhr
26
vulnerability VCID-9prk-73hp-e3dc
27
vulnerability VCID-ag97-535x-ruha
28
vulnerability VCID-axte-ftrh-4bb7
29
vulnerability VCID-c27j-436j-jucx
30
vulnerability VCID-dsmz-t3wg-cbbg
31
vulnerability VCID-dte3-gwkt-yyct
32
vulnerability VCID-ea5n-qghr-vffw
33
vulnerability VCID-fhwc-a97g-qbc7
34
vulnerability VCID-fxtg-yezw-hfhr
35
vulnerability VCID-g4sh-cbk2-dkd7
36
vulnerability VCID-juhn-rya8-ayej
37
vulnerability VCID-k79p-ju8g-9bhe
38
vulnerability VCID-kpds-34mt-b3hf
39
vulnerability VCID-kqsy-qu8j-8ugj
40
vulnerability VCID-m4yj-ast4-e3eh
41
vulnerability VCID-n8p5-749r-rqdu
42
vulnerability VCID-p667-62d7-vfgv
43
vulnerability VCID-qcxq-51sr-9bh4
44
vulnerability VCID-r1na-1j6c-vffy
45
vulnerability VCID-r8c4-p83a-byf5
46
vulnerability VCID-s28h-stan-bqev
47
vulnerability VCID-scm3-63j1-tkf2
48
vulnerability VCID-sts1-rpu2-y7dv
49
vulnerability VCID-tc68-59mt-4qh7
50
vulnerability VCID-tnps-h89q-a7hj
51
vulnerability VCID-tnup-6wcs-pybk
52
vulnerability VCID-ttwk-xeub-ebfy
53
vulnerability VCID-u2ec-h9n9-x7hd
54
vulnerability VCID-u6y9-6vau-nkde
55
vulnerability VCID-u8jf-pjxj-8fey
56
vulnerability VCID-updk-2xum-9bcb
57
vulnerability VCID-vtmk-7xbe-afbe
58
vulnerability VCID-w5et-zcp1-zfdb
59
vulnerability VCID-wphf-gk61-8ube
60
vulnerability VCID-wxeg-ygz4-gqbp
61
vulnerability VCID-xdur-8vs8-jfcy
62
vulnerability VCID-xjux-g847-hyb8
63
vulnerability VCID-yrt1-6bhw-nkgk
64
vulnerability VCID-zgvy-31uv-6yax
65
vulnerability VCID-zsz1-bnbj-dkhy
66
vulnerability VCID-zz7z-56e2-nfbh
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.0.1
aliases BIT-mlflow-2023-30172, CVE-2023-30172, GHSA-wc6j-5g83-xfm6, PYSEC-2023-70
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vgqk-x7vx-mbbw
52
url VCID-vtmk-7xbe-afbe
vulnerability_id VCID-vtmk-7xbe-afbe
summary Path Traversal: '\..\filename' in GitHub repository mlflow/mlflow prior to 2.3.1.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-2780
reference_id
reference_type
scores
0
value 0.86137
scoring_system epss
scoring_elements 0.99416
published_at 2026-06-11T12:55:00Z
1
value 0.86137
scoring_system epss
scoring_elements 0.99418
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-2780
1
reference_url https://github.com/advisories/GHSA-wjq3-7jxx-whj9
reference_id
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-wjq3-7jxx-whj9
2
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
3
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2023-69.yaml
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2023-69.yaml
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-2780
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-2780
5
reference_url https://huntr.dev/bounties/b12b0073-0bb0-4bd1-8fc2-ec7f17fd7689
reference_id b12b0073-0bb0-4bd1-8fc2-ec7f17fd7689
reference_type
scores
0
value 9.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
2
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
3
value CRITICAL
scoring_system generic_textual
scoring_elements
4
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-01-22T18:03:46Z/
url https://huntr.dev/bounties/b12b0073-0bb0-4bd1-8fc2-ec7f17fd7689
6
reference_url https://github.com/mlflow/mlflow/commit/fae77a525dd908c56d6204a4cef1c1c75b4e9857
reference_id fae77a525dd908c56d6204a4cef1c1c75b4e9857
reference_type
scores
0
value 9.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
2
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
3
value CRITICAL
scoring_system generic_textual
scoring_elements
4
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-01-22T18:03:46Z/
url https://github.com/mlflow/mlflow/commit/fae77a525dd908c56d6204a4cef1c1c75b4e9857
fixed_packages
0
url pkg:pypi/mlflow@2.3.0
purl pkg:pypi/mlflow@2.3.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-1sau-auws-mfcs
3
vulnerability VCID-24ct-fu3q-gbgj
4
vulnerability VCID-2hc7-ant5-qkcu
5
vulnerability VCID-2nft-dcgb-53c4
6
vulnerability VCID-2pjc-1kqa-1ygp
7
vulnerability VCID-2ujt-4vpx-6khr
8
vulnerability VCID-34mw-41t1-m7a9
9
vulnerability VCID-3cb8-9ms7-yyfa
10
vulnerability VCID-3ugt-4ygk-n3b1
11
vulnerability VCID-4jqc-vp49-2ybf
12
vulnerability VCID-4jya-uh8s-4ycv
13
vulnerability VCID-5qjx-6dd1-kbcw
14
vulnerability VCID-6dra-6783-pqg1
15
vulnerability VCID-6mc2-24nz-yqb4
16
vulnerability VCID-6twj-wz2n-eyhf
17
vulnerability VCID-74wr-ebmk-dugn
18
vulnerability VCID-7fb9-mjjp-xfax
19
vulnerability VCID-7hh6-6gv3-tyeg
20
vulnerability VCID-7ykf-b93e-w7am
21
vulnerability VCID-8gmy-kvc8-9fh6
22
vulnerability VCID-96az-gdtg-aka8
23
vulnerability VCID-97xj-trtn-g7ah
24
vulnerability VCID-9mak-nkua-3uhr
25
vulnerability VCID-9prk-73hp-e3dc
26
vulnerability VCID-ag97-535x-ruha
27
vulnerability VCID-axte-ftrh-4bb7
28
vulnerability VCID-c27j-436j-jucx
29
vulnerability VCID-dsmz-t3wg-cbbg
30
vulnerability VCID-ea5n-qghr-vffw
31
vulnerability VCID-fhwc-a97g-qbc7
32
vulnerability VCID-fxtg-yezw-hfhr
33
vulnerability VCID-g4sh-cbk2-dkd7
34
vulnerability VCID-juhn-rya8-ayej
35
vulnerability VCID-k79p-ju8g-9bhe
36
vulnerability VCID-kpds-34mt-b3hf
37
vulnerability VCID-kqsy-qu8j-8ugj
38
vulnerability VCID-m4yj-ast4-e3eh
39
vulnerability VCID-n8p5-749r-rqdu
40
vulnerability VCID-p667-62d7-vfgv
41
vulnerability VCID-qcxq-51sr-9bh4
42
vulnerability VCID-r1na-1j6c-vffy
43
vulnerability VCID-r8c4-p83a-byf5
44
vulnerability VCID-s28h-stan-bqev
45
vulnerability VCID-scm3-63j1-tkf2
46
vulnerability VCID-sts1-rpu2-y7dv
47
vulnerability VCID-tc68-59mt-4qh7
48
vulnerability VCID-tnps-h89q-a7hj
49
vulnerability VCID-tnup-6wcs-pybk
50
vulnerability VCID-ttwk-xeub-ebfy
51
vulnerability VCID-u2ec-h9n9-x7hd
52
vulnerability VCID-u6y9-6vau-nkde
53
vulnerability VCID-u8jf-pjxj-8fey
54
vulnerability VCID-updk-2xum-9bcb
55
vulnerability VCID-vtmk-7xbe-afbe
56
vulnerability VCID-w5et-zcp1-zfdb
57
vulnerability VCID-wphf-gk61-8ube
58
vulnerability VCID-wxeg-ygz4-gqbp
59
vulnerability VCID-xdur-8vs8-jfcy
60
vulnerability VCID-xjux-g847-hyb8
61
vulnerability VCID-yrt1-6bhw-nkgk
62
vulnerability VCID-zgvy-31uv-6yax
63
vulnerability VCID-zsz1-bnbj-dkhy
64
vulnerability VCID-zz7z-56e2-nfbh
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.3.0
1
url pkg:pypi/mlflow@2.3.1
purl pkg:pypi/mlflow@2.3.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-1sau-auws-mfcs
3
vulnerability VCID-24ct-fu3q-gbgj
4
vulnerability VCID-2hc7-ant5-qkcu
5
vulnerability VCID-2nft-dcgb-53c4
6
vulnerability VCID-2pjc-1kqa-1ygp
7
vulnerability VCID-2ujt-4vpx-6khr
8
vulnerability VCID-34mw-41t1-m7a9
9
vulnerability VCID-3cb8-9ms7-yyfa
10
vulnerability VCID-3ugt-4ygk-n3b1
11
vulnerability VCID-4jqc-vp49-2ybf
12
vulnerability VCID-4jya-uh8s-4ycv
13
vulnerability VCID-5qjx-6dd1-kbcw
14
vulnerability VCID-6dra-6783-pqg1
15
vulnerability VCID-6mc2-24nz-yqb4
16
vulnerability VCID-6twj-wz2n-eyhf
17
vulnerability VCID-74wr-ebmk-dugn
18
vulnerability VCID-7fb9-mjjp-xfax
19
vulnerability VCID-7hh6-6gv3-tyeg
20
vulnerability VCID-7ykf-b93e-w7am
21
vulnerability VCID-8gmy-kvc8-9fh6
22
vulnerability VCID-96az-gdtg-aka8
23
vulnerability VCID-97xj-trtn-g7ah
24
vulnerability VCID-9mak-nkua-3uhr
25
vulnerability VCID-9prk-73hp-e3dc
26
vulnerability VCID-ag97-535x-ruha
27
vulnerability VCID-axte-ftrh-4bb7
28
vulnerability VCID-c27j-436j-jucx
29
vulnerability VCID-dsmz-t3wg-cbbg
30
vulnerability VCID-ea5n-qghr-vffw
31
vulnerability VCID-fhwc-a97g-qbc7
32
vulnerability VCID-fxtg-yezw-hfhr
33
vulnerability VCID-g4sh-cbk2-dkd7
34
vulnerability VCID-juhn-rya8-ayej
35
vulnerability VCID-k79p-ju8g-9bhe
36
vulnerability VCID-kpds-34mt-b3hf
37
vulnerability VCID-kqsy-qu8j-8ugj
38
vulnerability VCID-m4yj-ast4-e3eh
39
vulnerability VCID-p667-62d7-vfgv
40
vulnerability VCID-qcxq-51sr-9bh4
41
vulnerability VCID-r1na-1j6c-vffy
42
vulnerability VCID-r8c4-p83a-byf5
43
vulnerability VCID-s28h-stan-bqev
44
vulnerability VCID-scm3-63j1-tkf2
45
vulnerability VCID-sts1-rpu2-y7dv
46
vulnerability VCID-tc68-59mt-4qh7
47
vulnerability VCID-tnps-h89q-a7hj
48
vulnerability VCID-tnup-6wcs-pybk
49
vulnerability VCID-ttwk-xeub-ebfy
50
vulnerability VCID-u6y9-6vau-nkde
51
vulnerability VCID-u8jf-pjxj-8fey
52
vulnerability VCID-updk-2xum-9bcb
53
vulnerability VCID-w5et-zcp1-zfdb
54
vulnerability VCID-wphf-gk61-8ube
55
vulnerability VCID-wxeg-ygz4-gqbp
56
vulnerability VCID-xdur-8vs8-jfcy
57
vulnerability VCID-xjux-g847-hyb8
58
vulnerability VCID-yrt1-6bhw-nkgk
59
vulnerability VCID-zgvy-31uv-6yax
60
vulnerability VCID-zsz1-bnbj-dkhy
61
vulnerability VCID-zz7z-56e2-nfbh
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.3.1
aliases BIT-mlflow-2023-2780, CVE-2023-2780, GHSA-wjq3-7jxx-whj9, PYSEC-2023-69
risk_score 10.0
exploitability 2.0
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vtmk-7xbe-afbe
53
url VCID-w5et-zcp1-zfdb
vulnerability_id VCID-w5et-zcp1-zfdb
summary In mlflow version 2.20.3, the temporary directory used for creating Python virtual environments is assigned insecure world-writable permissions (0o777). This vulnerability allows an attacker with write access to the `/tmp` directory to exploit a race condition and overwrite `.py` files in the virtual environment, leading to arbitrary code execution. The issue is resolved in version 3.4.0.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-10279
reference_id
reference_type
scores
0
value 7e-05
scoring_system epss
scoring_elements 0.00682
published_at 2026-06-12T12:55:00Z
1
value 7e-05
scoring_system epss
scoring_elements 0.00684
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-10279
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 7.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://huntr.com/bounties/01d3b81e-13d1-43aa-b91a-443aec68bdc8
reference_id 01d3b81e-13d1-43aa-b91a-443aec68bdc8
reference_type
scores
0
value 7
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 7.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-02-02T17:48:06Z/
url https://huntr.com/bounties/01d3b81e-13d1-43aa-b91a-443aec68bdc8
3
reference_url https://github.com/mlflow/mlflow/commit/1d7c8d4cf0a67d407499a8a4ffac387ea4f8194a
reference_id 1d7c8d4cf0a67d407499a8a4ffac387ea4f8194a
reference_type
scores
0
value 7
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 7.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-02-02T17:48:06Z/
url https://github.com/mlflow/mlflow/commit/1d7c8d4cf0a67d407499a8a4ffac387ea4f8194a
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-10279
reference_id CVE-2025-10279
reference_type
scores
0
value 7.0
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-10279
5
reference_url https://github.com/advisories/GHSA-4x5p-f36r-mxxr
reference_id GHSA-4x5p-f36r-mxxr
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-4x5p-f36r-mxxr
fixed_packages
0
url pkg:pypi/mlflow@3.4.0rc0
purl pkg:pypi/mlflow@3.4.0rc0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-4jqc-vp49-2ybf
3
vulnerability VCID-4jya-uh8s-4ycv
4
vulnerability VCID-7ykf-b93e-w7am
5
vulnerability VCID-96az-gdtg-aka8
6
vulnerability VCID-9mak-nkua-3uhr
7
vulnerability VCID-axte-ftrh-4bb7
8
vulnerability VCID-fxtg-yezw-hfhr
9
vulnerability VCID-kqsy-qu8j-8ugj
10
vulnerability VCID-scm3-63j1-tkf2
11
vulnerability VCID-tnps-h89q-a7hj
12
vulnerability VCID-wphf-gk61-8ube
13
vulnerability VCID-xdur-8vs8-jfcy
14
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@3.4.0rc0
aliases CVE-2025-10279, GHSA-4x5p-f36r-mxxr
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-w5et-zcp1-zfdb
54
url VCID-wphf-gk61-8ube
vulnerability_id VCID-wphf-gk61-8ube
summary In the latest version of mlflow/mlflow, when the `basic-auth` app is enabled, tracing and assessment endpoints are not protected by permission validators. This allows any authenticated user, including those with `NO_PERMISSIONS` on the experiment, to read trace information and create assessments for traces they should not have access to. This vulnerability impacts confidentiality by exposing trace metadata and integrity by allowing unauthorized creation of assessments. Deployments using `mlflow server --app-name=basic-auth` are affected.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15381.json
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15381.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-15381
reference_id
reference_type
scores
0
value 0.00013
scoring_system epss
scoring_elements 0.022
published_at 2026-06-12T12:55:00Z
1
value 0.00013
scoring_system epss
scoring_elements 0.02195
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-15381
2
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
3
reference_url https://github.com/mlflow/mlflow/blob/b569ebc74c14af593c326143bee2df44a5d59edf/mlflow/server/auth/__init__.py#L752
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/blob/b569ebc74c14af593c326143bee2df44a5d59edf/mlflow/server/auth/__init__.py#L752
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-15381
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-15381
5
reference_url https://huntr.com/bounties/149fb2f9-ef4b-4136-a25c-20563451904c
reference_id 149fb2f9-ef4b-4136-a25c-20563451904c
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-03-27T16:58:49Z/
url https://huntr.com/bounties/149fb2f9-ef4b-4136-a25c-20563451904c
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2452341
reference_id 2452341
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2452341
7
reference_url https://github.com/advisories/GHSA-g6pg-52vf-843h
reference_id GHSA-g6pg-52vf-843h
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-g6pg-52vf-843h
fixed_packages
0
url pkg:pypi/mlflow@3.9.0rc0
purl pkg:pypi/mlflow@3.9.0rc0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-4jqc-vp49-2ybf
3
vulnerability VCID-96az-gdtg-aka8
4
vulnerability VCID-axte-ftrh-4bb7
5
vulnerability VCID-fxtg-yezw-hfhr
6
vulnerability VCID-kqsy-qu8j-8ugj
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@3.9.0rc0
aliases CVE-2025-15381, GHSA-g6pg-52vf-843h
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wphf-gk61-8ube
55
url VCID-wxeg-ygz4-gqbp
vulnerability_id VCID-wxeg-ygz4-gqbp
summary OS Command Injection in GitHub repository mlflow/mlflow prior to 2.6.0.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-4033
reference_id
reference_type
scores
0
value 0.00182
scoring_system epss
scoring_elements 0.39876
published_at 2026-06-12T12:55:00Z
1
value 0.00182
scoring_system epss
scoring_elements 0.39705
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-4033
1
reference_url https://github.com/advisories/GHSA-ffw3-6378-cqgp
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-ffw3-6378-cqgp
2
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
3
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2023-280.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2023-280.yaml
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-4033
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-4033
5
reference_url https://huntr.dev/bounties/5312d6f8-67a5-4607-bd47-5e19966fa321
reference_id 5312d6f8-67a5-4607-bd47-5e19966fa321
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
1
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
2
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
3
value HIGH
scoring_system generic_textual
scoring_elements
4
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-10-15T14:09:29Z/
url https://huntr.dev/bounties/5312d6f8-67a5-4607-bd47-5e19966fa321
6
reference_url https://github.com/mlflow/mlflow/commit/6dde93758d42455cb90ef324407919ed67668b9b
reference_id 6dde93758d42455cb90ef324407919ed67668b9b
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
1
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
2
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
3
value HIGH
scoring_system generic_textual
scoring_elements
4
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-10-15T14:09:29Z/
url https://github.com/mlflow/mlflow/commit/6dde93758d42455cb90ef324407919ed67668b9b
fixed_packages
0
url pkg:pypi/mlflow@2.6.0
purl pkg:pypi/mlflow@2.6.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-1sau-auws-mfcs
3
vulnerability VCID-24ct-fu3q-gbgj
4
vulnerability VCID-2hc7-ant5-qkcu
5
vulnerability VCID-2nft-dcgb-53c4
6
vulnerability VCID-2pjc-1kqa-1ygp
7
vulnerability VCID-2ujt-4vpx-6khr
8
vulnerability VCID-34mw-41t1-m7a9
9
vulnerability VCID-3cb8-9ms7-yyfa
10
vulnerability VCID-3t2e-xs79-u7cd
11
vulnerability VCID-3ugt-4ygk-n3b1
12
vulnerability VCID-4jqc-vp49-2ybf
13
vulnerability VCID-4jya-uh8s-4ycv
14
vulnerability VCID-5qjx-6dd1-kbcw
15
vulnerability VCID-6dra-6783-pqg1
16
vulnerability VCID-6mc2-24nz-yqb4
17
vulnerability VCID-6twj-wz2n-eyhf
18
vulnerability VCID-74wr-ebmk-dugn
19
vulnerability VCID-7fb9-mjjp-xfax
20
vulnerability VCID-7hh6-6gv3-tyeg
21
vulnerability VCID-7ykf-b93e-w7am
22
vulnerability VCID-8gmy-kvc8-9fh6
23
vulnerability VCID-96az-gdtg-aka8
24
vulnerability VCID-97xj-trtn-g7ah
25
vulnerability VCID-9mak-nkua-3uhr
26
vulnerability VCID-9prk-73hp-e3dc
27
vulnerability VCID-ag97-535x-ruha
28
vulnerability VCID-axte-ftrh-4bb7
29
vulnerability VCID-c27j-436j-jucx
30
vulnerability VCID-ea5n-qghr-vffw
31
vulnerability VCID-fhwc-a97g-qbc7
32
vulnerability VCID-fxtg-yezw-hfhr
33
vulnerability VCID-g4sh-cbk2-dkd7
34
vulnerability VCID-juhn-rya8-ayej
35
vulnerability VCID-k79p-ju8g-9bhe
36
vulnerability VCID-kpds-34mt-b3hf
37
vulnerability VCID-kqsy-qu8j-8ugj
38
vulnerability VCID-m4yj-ast4-e3eh
39
vulnerability VCID-p667-62d7-vfgv
40
vulnerability VCID-qcxq-51sr-9bh4
41
vulnerability VCID-r8c4-p83a-byf5
42
vulnerability VCID-s28h-stan-bqev
43
vulnerability VCID-scm3-63j1-tkf2
44
vulnerability VCID-sts1-rpu2-y7dv
45
vulnerability VCID-tc68-59mt-4qh7
46
vulnerability VCID-tnps-h89q-a7hj
47
vulnerability VCID-tnup-6wcs-pybk
48
vulnerability VCID-ttwk-xeub-ebfy
49
vulnerability VCID-u6y9-6vau-nkde
50
vulnerability VCID-u8jf-pjxj-8fey
51
vulnerability VCID-updk-2xum-9bcb
52
vulnerability VCID-w5et-zcp1-zfdb
53
vulnerability VCID-wphf-gk61-8ube
54
vulnerability VCID-xdur-8vs8-jfcy
55
vulnerability VCID-xjux-g847-hyb8
56
vulnerability VCID-yrt1-6bhw-nkgk
57
vulnerability VCID-zgvy-31uv-6yax
58
vulnerability VCID-zsz1-bnbj-dkhy
59
vulnerability VCID-zz7z-56e2-nfbh
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.6.0
aliases BIT-mlflow-2023-4033, CVE-2023-4033, GHSA-ffw3-6378-cqgp, PYSEC-2023-280
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wxeg-ygz4-gqbp
56
url VCID-xdur-8vs8-jfcy
vulnerability_id VCID-xdur-8vs8-jfcy
summary A vulnerability in MLflow's pyfunc extraction process allows for arbitrary file writes due to improper handling of tar archive entries. Specifically, the use of `tarfile.extractall` without path validation enables crafted tar.gz files containing `..` or absolute paths to escape the intended extraction directory. This issue affects the latest version of MLflow and poses a high/critical risk in scenarios involving multi-tenant environments or ingestion of untrusted artifacts, as it can lead to arbitrary file overwrites and potential remote code execution.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15031.json
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15031.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-15031
reference_id
reference_type
scores
0
value 0.00333
scoring_system epss
scoring_elements 0.56669
published_at 2026-06-12T12:55:00Z
1
value 0.00333
scoring_system epss
scoring_elements 0.56549
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-15031
2
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
3
reference_url https://github.com/mlflow/mlflow/blob/fe4d9be330426904283401f1d2ed914238b6fc37/mlflow/pyfunc/dbconnect_artifact_cache.py#L140
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/blob/fe4d9be330426904283401f1d2ed914238b6fc37/mlflow/pyfunc/dbconnect_artifact_cache.py#L140
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-15031
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-15031
5
reference_url https://huntr.com/bounties/09856f77-f968-446f-a930-657d126efe4e
reference_id 09856f77-f968-446f-a930-657d126efe4e
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-03-19T13:52:23Z/
url https://huntr.com/bounties/09856f77-f968-446f-a930-657d126efe4e
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2448912
reference_id 2448912
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2448912
7
reference_url https://github.com/advisories/GHSA-fhff-qmm8-h2fp
reference_id GHSA-fhff-qmm8-h2fp
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-fhff-qmm8-h2fp
fixed_packages
0
url pkg:pypi/mlflow@3.9.0rc0
purl pkg:pypi/mlflow@3.9.0rc0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-4jqc-vp49-2ybf
3
vulnerability VCID-96az-gdtg-aka8
4
vulnerability VCID-axte-ftrh-4bb7
5
vulnerability VCID-fxtg-yezw-hfhr
6
vulnerability VCID-kqsy-qu8j-8ugj
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@3.9.0rc0
aliases CVE-2025-15031, GHSA-fhff-qmm8-h2fp
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xdur-8vs8-jfcy
57
url VCID-xjux-g847-hyb8
vulnerability_id VCID-xjux-g847-hyb8
summary 
MLflow Tracking Server Artifact Handler Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MLflow Tracking Server. Authentication is not required to exploit this vulnerability.

The specific flaw exists within the handling of artifact file paths. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to execute code in the context of the service account. Was ZDI-CAN-26649.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2033.json
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2033.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-2033
reference_id
reference_type
scores
0
value 0.18428
scoring_system epss
scoring_elements 0.954
published_at 2026-06-12T12:55:00Z
1
value 0.18428
scoring_system epss
scoring_elements 0.95386
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-2033
2
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
3
reference_url https://github.com/mlflow/mlflow/commit/5bf2ec2bd4222a18d78631183ac7f6b752afe8a4
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/5bf2ec2bd4222a18d78631183ac7f6b752afe8a4
4
reference_url https://github.com/mlflow/mlflow/releases/tag/v3.8.0rc0
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/releases/tag/v3.8.0rc0
5
reference_url https://www.zerodayinitiative.com/advisories/ZDI-26-105
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.zerodayinitiative.com/advisories/ZDI-26-105
6
reference_url https://github.com/mlflow/mlflow/pull/19260
reference_id 19260
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-25T04:55:54Z/
url https://github.com/mlflow/mlflow/pull/19260
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2441508
reference_id 2441508
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2441508
8
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-2033
reference_id CVE-2026-2033
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-2033
9
reference_url https://github.com/advisories/GHSA-q2r8-vmq7-fpx2
reference_id GHSA-q2r8-vmq7-fpx2
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-q2r8-vmq7-fpx2
10
reference_url https://www.zerodayinitiative.com/advisories/ZDI-26-105/
reference_id ZDI-26-105
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-25T04:55:54Z/
url https://www.zerodayinitiative.com/advisories/ZDI-26-105/
fixed_packages
0
url pkg:pypi/mlflow@3.8.0rc0
purl pkg:pypi/mlflow@3.8.0rc0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1bya-32tr-jfhz
1
vulnerability VCID-24ct-fu3q-gbgj
2
vulnerability VCID-4jqc-vp49-2ybf
3
vulnerability VCID-96az-gdtg-aka8
4
vulnerability VCID-9mak-nkua-3uhr
5
vulnerability VCID-axte-ftrh-4bb7
6
vulnerability VCID-fxtg-yezw-hfhr
7
vulnerability VCID-kqsy-qu8j-8ugj
8
vulnerability VCID-scm3-63j1-tkf2
9
vulnerability VCID-wphf-gk61-8ube
10
vulnerability VCID-xdur-8vs8-jfcy
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@3.8.0rc0
aliases CVE-2026-2033, GHSA-q2r8-vmq7-fpx2
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xjux-g847-hyb8
58
url VCID-yrt1-6bhw-nkgk
vulnerability_id VCID-yrt1-6bhw-nkgk
summary Path Traversal in GitHub repository mlflow/mlflow prior to 2.9.2.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-6753
reference_id
reference_type
scores
0
value 0.02418
scoring_system epss
scoring_elements 0.85496
published_at 2026-06-12T12:55:00Z
1
value 0.02418
scoring_system epss
scoring_elements 0.85445
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-6753
1
reference_url https://github.com/advisories/GHSA-v945-r3rc-6fjm
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-v945-r3rc-6fjm
2
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
3
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2023-309.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2023-309.yaml
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-6753
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-6753
5
reference_url https://github.com/mlflow/mlflow/commit/1c6309f884798fbf56017a3cc808016869ee8de4
reference_id 1c6309f884798fbf56017a3cc808016869ee8de4
reference_type
scores
0
value 9.6
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-02-06T16:29:37Z/
url https://github.com/mlflow/mlflow/commit/1c6309f884798fbf56017a3cc808016869ee8de4
6
reference_url https://huntr.com/bounties/b397b83a-527a-47e7-b912-a12a17a6cfb4
reference_id b397b83a-527a-47e7-b912-a12a17a6cfb4
reference_type
scores
0
value 9.6
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-02-06T16:29:37Z/
url https://huntr.com/bounties/b397b83a-527a-47e7-b912-a12a17a6cfb4
fixed_packages
0
url pkg:pypi/mlflow@2.9.2
purl pkg:pypi/mlflow@2.9.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2nft-dcgb-53c4
4
vulnerability VCID-3cb8-9ms7-yyfa
5
vulnerability VCID-3t2e-xs79-u7cd
6
vulnerability VCID-4jqc-vp49-2ybf
7
vulnerability VCID-4jya-uh8s-4ycv
8
vulnerability VCID-5qjx-6dd1-kbcw
9
vulnerability VCID-6dra-6783-pqg1
10
vulnerability VCID-6mc2-24nz-yqb4
11
vulnerability VCID-6twj-wz2n-eyhf
12
vulnerability VCID-7fb9-mjjp-xfax
13
vulnerability VCID-7hh6-6gv3-tyeg
14
vulnerability VCID-7ykf-b93e-w7am
15
vulnerability VCID-8gmy-kvc8-9fh6
16
vulnerability VCID-96az-gdtg-aka8
17
vulnerability VCID-97xj-trtn-g7ah
18
vulnerability VCID-9mak-nkua-3uhr
19
vulnerability VCID-ag97-535x-ruha
20
vulnerability VCID-axte-ftrh-4bb7
21
vulnerability VCID-c27j-436j-jucx
22
vulnerability VCID-ea5n-qghr-vffw
23
vulnerability VCID-fhwc-a97g-qbc7
24
vulnerability VCID-fxtg-yezw-hfhr
25
vulnerability VCID-juhn-rya8-ayej
26
vulnerability VCID-k79p-ju8g-9bhe
27
vulnerability VCID-kpds-34mt-b3hf
28
vulnerability VCID-kqsy-qu8j-8ugj
29
vulnerability VCID-m4yj-ast4-e3eh
30
vulnerability VCID-p667-62d7-vfgv
31
vulnerability VCID-r8c4-p83a-byf5
32
vulnerability VCID-s28h-stan-bqev
33
vulnerability VCID-scm3-63j1-tkf2
34
vulnerability VCID-sts1-rpu2-y7dv
35
vulnerability VCID-tc68-59mt-4qh7
36
vulnerability VCID-tnps-h89q-a7hj
37
vulnerability VCID-tnup-6wcs-pybk
38
vulnerability VCID-ttwk-xeub-ebfy
39
vulnerability VCID-u6y9-6vau-nkde
40
vulnerability VCID-u8jf-pjxj-8fey
41
vulnerability VCID-updk-2xum-9bcb
42
vulnerability VCID-w5et-zcp1-zfdb
43
vulnerability VCID-wphf-gk61-8ube
44
vulnerability VCID-xdur-8vs8-jfcy
45
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.9.2
aliases BIT-mlflow-2023-6753, CVE-2023-6753, GHSA-v945-r3rc-6fjm, PYSEC-2023-309
risk_score 4.3
exploitability 0.5
weighted_severity 8.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yrt1-6bhw-nkgk
59
url VCID-zgvy-31uv-6yax
vulnerability_id VCID-zgvy-31uv-6yax
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-6977
reference_id
reference_type
scores
0
value 0.83041
scoring_system epss
scoring_elements 0.99277
published_at 2026-06-11T12:55:00Z
1
value 0.83041
scoring_system epss
scoring_elements 0.99279
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-6977
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://github.com/mlflow/mlflow/commit/4bd7f27c810ba7487d53ed5ef1038fca0f8dc28c
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/4bd7f27c810ba7487d53ed5ef1038fca0f8dc28c
3
reference_url https://huntr.com/bounties/fe53bf71-3687-4711-90df-c26172880aaf
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://huntr.com/bounties/fe53bf71-3687-4711-90df-c26172880aaf
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-6977
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-6977
5
reference_url https://github.com/advisories/GHSA-qg8p-32gr-gh6x
reference_id GHSA-qg8p-32gr-gh6x
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-qg8p-32gr-gh6x
fixed_packages
0
url pkg:pypi/mlflow@2.9.2
purl pkg:pypi/mlflow@2.9.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2nft-dcgb-53c4
4
vulnerability VCID-3cb8-9ms7-yyfa
5
vulnerability VCID-3t2e-xs79-u7cd
6
vulnerability VCID-4jqc-vp49-2ybf
7
vulnerability VCID-4jya-uh8s-4ycv
8
vulnerability VCID-5qjx-6dd1-kbcw
9
vulnerability VCID-6dra-6783-pqg1
10
vulnerability VCID-6mc2-24nz-yqb4
11
vulnerability VCID-6twj-wz2n-eyhf
12
vulnerability VCID-7fb9-mjjp-xfax
13
vulnerability VCID-7hh6-6gv3-tyeg
14
vulnerability VCID-7ykf-b93e-w7am
15
vulnerability VCID-8gmy-kvc8-9fh6
16
vulnerability VCID-96az-gdtg-aka8
17
vulnerability VCID-97xj-trtn-g7ah
18
vulnerability VCID-9mak-nkua-3uhr
19
vulnerability VCID-ag97-535x-ruha
20
vulnerability VCID-axte-ftrh-4bb7
21
vulnerability VCID-c27j-436j-jucx
22
vulnerability VCID-ea5n-qghr-vffw
23
vulnerability VCID-fhwc-a97g-qbc7
24
vulnerability VCID-fxtg-yezw-hfhr
25
vulnerability VCID-juhn-rya8-ayej
26
vulnerability VCID-k79p-ju8g-9bhe
27
vulnerability VCID-kpds-34mt-b3hf
28
vulnerability VCID-kqsy-qu8j-8ugj
29
vulnerability VCID-m4yj-ast4-e3eh
30
vulnerability VCID-p667-62d7-vfgv
31
vulnerability VCID-r8c4-p83a-byf5
32
vulnerability VCID-s28h-stan-bqev
33
vulnerability VCID-scm3-63j1-tkf2
34
vulnerability VCID-sts1-rpu2-y7dv
35
vulnerability VCID-tc68-59mt-4qh7
36
vulnerability VCID-tnps-h89q-a7hj
37
vulnerability VCID-tnup-6wcs-pybk
38
vulnerability VCID-ttwk-xeub-ebfy
39
vulnerability VCID-u6y9-6vau-nkde
40
vulnerability VCID-u8jf-pjxj-8fey
41
vulnerability VCID-updk-2xum-9bcb
42
vulnerability VCID-w5et-zcp1-zfdb
43
vulnerability VCID-wphf-gk61-8ube
44
vulnerability VCID-xdur-8vs8-jfcy
45
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.9.2
aliases CVE-2023-6977, GHSA-qg8p-32gr-gh6x
risk_score 10.0
exploitability 2.0
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zgvy-31uv-6yax
60
url VCID-zsz1-bnbj-dkhy
vulnerability_id VCID-zsz1-bnbj-dkhy
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-6976
reference_id
reference_type
scores
0
value 0.00107
scoring_system epss
scoring_elements 0.28419
published_at 2026-06-11T12:55:00Z
1
value 0.00107
scoring_system epss
scoring_elements 0.28615
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-6976
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://github.com/mlflow/mlflow/commit/5044878da0c1851ccfdd5c0a867157ed9a502fbc
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/5044878da0c1851ccfdd5c0a867157ed9a502fbc
3
reference_url https://huntr.com/bounties/2408a52b-f05b-4cac-9765-4f74bac3f20f
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://huntr.com/bounties/2408a52b-f05b-4cac-9765-4f74bac3f20f
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-6976
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-6976
5
reference_url https://github.com/advisories/GHSA-wv8q-4f85-2p8p
reference_id GHSA-wv8q-4f85-2p8p
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-wv8q-4f85-2p8p
fixed_packages
0
url pkg:pypi/mlflow@2.9.2
purl pkg:pypi/mlflow@2.9.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2nft-dcgb-53c4
4
vulnerability VCID-3cb8-9ms7-yyfa
5
vulnerability VCID-3t2e-xs79-u7cd
6
vulnerability VCID-4jqc-vp49-2ybf
7
vulnerability VCID-4jya-uh8s-4ycv
8
vulnerability VCID-5qjx-6dd1-kbcw
9
vulnerability VCID-6dra-6783-pqg1
10
vulnerability VCID-6mc2-24nz-yqb4
11
vulnerability VCID-6twj-wz2n-eyhf
12
vulnerability VCID-7fb9-mjjp-xfax
13
vulnerability VCID-7hh6-6gv3-tyeg
14
vulnerability VCID-7ykf-b93e-w7am
15
vulnerability VCID-8gmy-kvc8-9fh6
16
vulnerability VCID-96az-gdtg-aka8
17
vulnerability VCID-97xj-trtn-g7ah
18
vulnerability VCID-9mak-nkua-3uhr
19
vulnerability VCID-ag97-535x-ruha
20
vulnerability VCID-axte-ftrh-4bb7
21
vulnerability VCID-c27j-436j-jucx
22
vulnerability VCID-ea5n-qghr-vffw
23
vulnerability VCID-fhwc-a97g-qbc7
24
vulnerability VCID-fxtg-yezw-hfhr
25
vulnerability VCID-juhn-rya8-ayej
26
vulnerability VCID-k79p-ju8g-9bhe
27
vulnerability VCID-kpds-34mt-b3hf
28
vulnerability VCID-kqsy-qu8j-8ugj
29
vulnerability VCID-m4yj-ast4-e3eh
30
vulnerability VCID-p667-62d7-vfgv
31
vulnerability VCID-r8c4-p83a-byf5
32
vulnerability VCID-s28h-stan-bqev
33
vulnerability VCID-scm3-63j1-tkf2
34
vulnerability VCID-sts1-rpu2-y7dv
35
vulnerability VCID-tc68-59mt-4qh7
36
vulnerability VCID-tnps-h89q-a7hj
37
vulnerability VCID-tnup-6wcs-pybk
38
vulnerability VCID-ttwk-xeub-ebfy
39
vulnerability VCID-u6y9-6vau-nkde
40
vulnerability VCID-u8jf-pjxj-8fey
41
vulnerability VCID-updk-2xum-9bcb
42
vulnerability VCID-w5et-zcp1-zfdb
43
vulnerability VCID-wphf-gk61-8ube
44
vulnerability VCID-xdur-8vs8-jfcy
45
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.9.2
aliases CVE-2023-6976, GHSA-wv8q-4f85-2p8p
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zsz1-bnbj-dkhy
61
url VCID-zz7z-56e2-nfbh
vulnerability_id VCID-zz7z-56e2-nfbh
summary with only one user interaction(download a malicious config), attackers can gain full command execution on the victim system.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-6940
reference_id
reference_type
scores
0
value 0.00151
scoring_system epss
scoring_elements 0.35644
published_at 2026-06-12T12:55:00Z
1
value 0.00151
scoring_system epss
scoring_elements 0.35464
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-6940
1
reference_url https://github.com/mlflow/mlflow
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow
2
reference_url https://github.com/mlflow/mlflow/commit/a98a341a7222f894b7735db575ad9311ecaba4e3
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commit/a98a341a7222f894b7735db575ad9311ecaba4e3
3
reference_url https://github.com/mlflow/mlflow/commits/v2.9.2
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/commits/v2.9.2
4
reference_url https://github.com/mlflow/mlflow/pull/10676
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/mlflow/mlflow/pull/10676
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-6940
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-6940
6
reference_url https://github.com/mlflow/mlflow/commit/5139b1087d686fa52e2b087e09da66aff86297b1
reference_id 5139b1087d686fa52e2b087e09da66aff86297b1
reference_type
scores
0
value 9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-07T20:25:53Z/
url https://github.com/mlflow/mlflow/commit/5139b1087d686fa52e2b087e09da66aff86297b1
7
reference_url https://huntr.com/bounties/c6f59480-ce47-4f78-a3dc-4bd8ca15029c
reference_id c6f59480-ce47-4f78-a3dc-4bd8ca15029c
reference_type
scores
0
value 9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-07T20:25:53Z/
url https://huntr.com/bounties/c6f59480-ce47-4f78-a3dc-4bd8ca15029c
8
reference_url https://github.com/advisories/GHSA-hvc6-42vf-jhf8
reference_id GHSA-hvc6-42vf-jhf8
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-hvc6-42vf-jhf8
fixed_packages
0
url pkg:pypi/mlflow@2.9.2
purl pkg:pypi/mlflow@2.9.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1acy-s3sy-wuhm
1
vulnerability VCID-1bya-32tr-jfhz
2
vulnerability VCID-24ct-fu3q-gbgj
3
vulnerability VCID-2nft-dcgb-53c4
4
vulnerability VCID-3cb8-9ms7-yyfa
5
vulnerability VCID-3t2e-xs79-u7cd
6
vulnerability VCID-4jqc-vp49-2ybf
7
vulnerability VCID-4jya-uh8s-4ycv
8
vulnerability VCID-5qjx-6dd1-kbcw
9
vulnerability VCID-6dra-6783-pqg1
10
vulnerability VCID-6mc2-24nz-yqb4
11
vulnerability VCID-6twj-wz2n-eyhf
12
vulnerability VCID-7fb9-mjjp-xfax
13
vulnerability VCID-7hh6-6gv3-tyeg
14
vulnerability VCID-7ykf-b93e-w7am
15
vulnerability VCID-8gmy-kvc8-9fh6
16
vulnerability VCID-96az-gdtg-aka8
17
vulnerability VCID-97xj-trtn-g7ah
18
vulnerability VCID-9mak-nkua-3uhr
19
vulnerability VCID-ag97-535x-ruha
20
vulnerability VCID-axte-ftrh-4bb7
21
vulnerability VCID-c27j-436j-jucx
22
vulnerability VCID-ea5n-qghr-vffw
23
vulnerability VCID-fhwc-a97g-qbc7
24
vulnerability VCID-fxtg-yezw-hfhr
25
vulnerability VCID-juhn-rya8-ayej
26
vulnerability VCID-k79p-ju8g-9bhe
27
vulnerability VCID-kpds-34mt-b3hf
28
vulnerability VCID-kqsy-qu8j-8ugj
29
vulnerability VCID-m4yj-ast4-e3eh
30
vulnerability VCID-p667-62d7-vfgv
31
vulnerability VCID-r8c4-p83a-byf5
32
vulnerability VCID-s28h-stan-bqev
33
vulnerability VCID-scm3-63j1-tkf2
34
vulnerability VCID-sts1-rpu2-y7dv
35
vulnerability VCID-tc68-59mt-4qh7
36
vulnerability VCID-tnps-h89q-a7hj
37
vulnerability VCID-tnup-6wcs-pybk
38
vulnerability VCID-ttwk-xeub-ebfy
39
vulnerability VCID-u6y9-6vau-nkde
40
vulnerability VCID-u8jf-pjxj-8fey
41
vulnerability VCID-updk-2xum-9bcb
42
vulnerability VCID-w5et-zcp1-zfdb
43
vulnerability VCID-wphf-gk61-8ube
44
vulnerability VCID-xdur-8vs8-jfcy
45
vulnerability VCID-xjux-g847-hyb8
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@2.9.2
aliases CVE-2023-6940, GHSA-hvc6-42vf-jhf8
risk_score 4.0
exploitability 0.5
weighted_severity 8.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zz7z-56e2-nfbh
Fixing_vulnerabilities
Risk_score10.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:pypi/mlflow@0.9.1