Approved changes feed: RSS · Atom
cpe:2.3:a:lfprojects:mlflow:*:-:*:*:*:*:*:*
part: a version: * update: -
| Vendor | Lfprojects (4544abc5-133d-544b-9bd5-895c4c487a16) |
|---|---|
| Product | Mlflow (5e81e7b0-7dac-5ba5-8d2f-b1ba6b55eb8a) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-15036 |
vulnerable | 2026-06-03 14:58:56.393191 |
Path Traversal Vulnerability in mlflow/mlflow
CRITICAL (9.6)
A path traversal vulnerability exists in the `extract_archive_to_dir` function within the `mlflow/pyfunc/dbconnect_artifact_cache.py` file of the mlflow/mlflow repository. This vulnerability, present in versions before v3.7.0, arises due to the lack of validation of tar member paths during extraction. An attacker with control over the tar.gz file can exploit this issue to overwrite arbitrary files or gain elevated privileges, potentially escaping the sandbox directory in multi-tenant or shared cluster environments.
Published: 2026-03-30T01:16:06.400Z
Updated: 2026-03-31T03:55:39.134Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-14287 |
vulnerable | 2026-06-03 14:58:55.027054 |
Command Injection in mlflow/mlflow
HIGH (7.5)
A command injection vulnerability exists in mlflow/mlflow versions before v3.7.0, specifically in the `mlflow/sagemaker/__init__.py` file at lines 161-167. The vulnerability arises from the direct interpolation of user-supplied container image names into shell commands without proper sanitization, which are then executed using `os.system()`. This allows attackers to execute arbitrary commands by supplying malicious input through the `--container` parameter of the CLI. The issue affects environments where MLflow is used, including development setups, CI/CD pipelines, and cloud deployments.
Published: 2026-03-15T09:27:36.706Z
Updated: 2026-03-17T12:44:13.631Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-14279 |
vulnerable | 2026-06-03 14:58:55.011748 |
DNS Rebinding Vulnerability in mlflow/mlflow
HIGH (8.1)
MLFlow versions up to and including 3.4.0 are vulnerable to DNS rebinding attacks due to a lack of Origin header validation in the MLFlow REST server. This vulnerability allows malicious websites to bypass Same-Origin Policy protections and execute unauthorized calls against REST endpoints. An attacker can query, update, and delete experiments via the affected endpoints, leading to potential data exfiltration, destruction, or manipulation. The issue is resolved in version 3.5.0.
Published: 2026-01-12T08:15:58.607Z
Updated: 2026-01-12T14:54:38.693Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-10279 |
vulnerable | 2026-06-03 14:58:33.912894 |
Privilege Escalation in mlflow/mlflow
HIGH (7)
In mlflow version 2.20.3, the temporary directory used for creating Python virtual environments is assigned insecure world-writable permissions (0o777). This vulnerability allows an attacker with write access to the `/tmp` directory to exploit a race condition and overwrite `.py` files in the virtual environment, leading to arbitrary code execution. The issue is resolved in version 3.4.0.
Published: 2026-02-02T10:36:22.810Z
Updated: 2026-02-02T17:48:15.265Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.