Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-ap57-62wx-k7b9
Vulnerability ID VCID-ap57-62wx-k7b9
Aliases CVE-2023-6940
GHSA-hvc6-42vf-jhf8
Summary Improper Neutralization of Special Elements used in a Command ('Command Injection') with only one user interaction(download a malicious config), attackers can gain full command execution on the victim system.
Status Published
Exploitability None
Weighted Severity None
Risk None
Affected and Fixed Packages Package Details
Weaknesses (4)
CWE-1035 OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection')
CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CWE-937 OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
System Score Found at
epss 0.00151 https://api.first.org/data/v1/epss?cve=CVE-2023-6940
cvssv3.1 8.8 https://github.com/mlflow/mlflow
generic_textual HIGH https://github.com/mlflow/mlflow
cvssv3 9 https://github.com/mlflow/mlflow/commit/5139b1087d686fa52e2b087e09da66aff86297b1
cvssv3.1 8.8 https://github.com/mlflow/mlflow/commit/5139b1087d686fa52e2b087e09da66aff86297b1
generic_textual HIGH https://github.com/mlflow/mlflow/commit/5139b1087d686fa52e2b087e09da66aff86297b1
ssvc Track https://github.com/mlflow/mlflow/commit/5139b1087d686fa52e2b087e09da66aff86297b1
cvssv3.1 8.8 https://github.com/mlflow/mlflow/commit/a98a341a7222f894b7735db575ad9311ecaba4e3
generic_textual HIGH https://github.com/mlflow/mlflow/commit/a98a341a7222f894b7735db575ad9311ecaba4e3
cvssv3.1 8.8 https://github.com/mlflow/mlflow/commits/v2.9.2
generic_textual HIGH https://github.com/mlflow/mlflow/commits/v2.9.2
cvssv3.1 8.8 https://github.com/mlflow/mlflow/pull/10676
generic_textual HIGH https://github.com/mlflow/mlflow/pull/10676
cvssv3 9 https://huntr.com/bounties/c6f59480-ce47-4f78-a3dc-4bd8ca15029c
cvssv3.1 8.8 https://huntr.com/bounties/c6f59480-ce47-4f78-a3dc-4bd8ca15029c
generic_textual HIGH https://huntr.com/bounties/c6f59480-ce47-4f78-a3dc-4bd8ca15029c
ssvc Track https://huntr.com/bounties/c6f59480-ce47-4f78-a3dc-4bd8ca15029c
cvssv3.1 8.8 https://nvd.nist.gov/vuln/detail/CVE-2023-6940
generic_textual HIGH https://nvd.nist.gov/vuln/detail/CVE-2023-6940
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2023-6940
https://github.com/mlflow/mlflow
https://github.com/mlflow/mlflow/commit/5139b1087d686fa52e2b087e09da66aff86297b1
https://github.com/mlflow/mlflow/commit/a98a341a7222f894b7735db575ad9311ecaba4e3
https://github.com/mlflow/mlflow/commits/v2.9.2
https://github.com/mlflow/mlflow/pull/10676
https://huntr.com/bounties/c6f59480-ce47-4f78-a3dc-4bd8ca15029c
CVE-2023-6940 https://nvd.nist.gov/vuln/detail/CVE-2023-6940
GHSA-hvc6-42vf-jhf8 https://github.com/advisories/GHSA-hvc6-42vf-jhf8
No exploits are available.
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://github.com/mlflow/mlflow
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H Found at https://github.com/mlflow/mlflow/commit/5139b1087d686fa52e2b087e09da66aff86297b1
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://github.com/mlflow/mlflow/commit/5139b1087d686fa52e2b087e09da66aff86297b1
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-07T20:25:53Z/ Found at https://github.com/mlflow/mlflow/commit/5139b1087d686fa52e2b087e09da66aff86297b1
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://github.com/mlflow/mlflow/commit/a98a341a7222f894b7735db575ad9311ecaba4e3
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://github.com/mlflow/mlflow/commits/v2.9.2
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://github.com/mlflow/mlflow/pull/10676
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H Found at https://huntr.com/bounties/c6f59480-ce47-4f78-a3dc-4bd8ca15029c
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://huntr.com/bounties/c6f59480-ce47-4f78-a3dc-4bd8ca15029c
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-07T20:25:53Z/ Found at https://huntr.com/bounties/c6f59480-ce47-4f78-a3dc-4bd8ca15029c
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2023-6940
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.35468
EPSS Score 0.00151
Published At June 5, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-02T04:46:42.630602+00:00 GitLab Importer Import https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/mlflow/CVE-2023-6940.yml 38.6.0