CVE-2024-2928
published 2024-06-06CVE-2024-2928: A Local File Inclusion (LFI) vulnerability was identified in mlflow/mlflow, specifically in version 2.9.2, which was fixed in version 2.11.3. This…
PriorityP267high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
EXPLOIT
EPSS
21.85%
97.3th percentile
A Local File Inclusion (LFI) vulnerability was identified in mlflow/mlflow, specifically in version 2.9.2, which was fixed in version 2.11.3. This vulnerability arises from the application's failure to properly validate URI fragments for directory traversal sequences such as '../'. An attacker can exploit this flaw by manipulating the fragment part of the URI to read arbitrary files on the local file system, including sensitive files like '/etc/passwd'. The vulnerability is a bypass to a previous patch that only addressed similar manipulation within the URI's query string, highlighting the need for comprehensive validation of all parts of a URI to prevent LFI attacks.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| lfprojects | mlflow | < 2.11.3 | 2.11.3 |
| lfprojects | mlflow | < 96f0b573a73d8eedd6735a2ce26e08859527be07 | 96f0b573a73d8eedd6735a2ce26e08859527be07 |
| lfprojects | mlflow | >= 0 < 2.11.3 | 2.11.3 |
| lfprojects | mlflow | >= 0 < 96f0b573a73d8eedd6735a2ce26e08859527be07 | 96f0b573a73d8eedd6735a2ce26e08859527be07 |
| mlflow | mlflow_mlflow | >= unspecified < 2.11.3 | 2.11.3 |
Detection & IOCsextracted from sources · hover to see the quote
- →Detect exploitation attempts by monitoring POST requests to /ajax-api/2.0/mlflow/experiments/create with a URI fragment containing directory traversal sequences (e.g., '/../') in the artifact_location field. ↗
- →Monitor GET requests to /model-versions/get-artifact with path=passwd as a strong indicator of active LFI exploitation targeting /etc/passwd. ↗
- →Detect responses containing 'filename=passwd' and 'application/octet-stream' headers from the MLflow artifact endpoint, indicating successful file read. ↗
- →Flag POST requests to /ajax-api/2.0/mlflow/model-versions/create where the 'source' field contains a file:// URI pointing to sensitive system paths. ↗
- →Use Shodan/FOFA queries to identify exposed MLflow instances as potential targets: Shodan 'http.title:"mlflow"', FOFA 'title="mlflow"' or 'app="mlflow"'. ↗
- ·The exploit requires a multi-step chain: create an experiment with a traversal artifact_location, create a run under that experiment, create a registered model, create a model version with source=file:///etc/, then fetch the artifact. All five steps must succeed for exploitation. ↗
- ·Affected versions are MLflow < 2.11.3; specifically identified in version 2.9.2. The fix was introduced in version 2.11.3. ↗
- ·The traversal payload is embedded in the URI fragment (after '#'), not the query string — detection rules targeting only query string traversal sequences will miss this attack vector. ↗
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Local File Inclusion in mlflow
osv·2024-06-06
CVE-2024-2928 [HIGH] Local File Inclusion in mlflow
Local File Inclusion in mlflow
A Local File Inclusion (LFI) vulnerability was identified in mlflow/mlflow, specifically in version 2.9.2, which was fixed in version 2.11.3. This vulnerability arises from the application's failure to properly validate URI fragments for directory traversal sequences such as '../'. An attacker can exploit this flaw by manipulating the fragment part of the URI to read arbitrary files on the local file system, including sensitive files like '/etc/passwd'. The vulnerability is a bypass to a previous patch that only addressed similar manipulation within the URI's query string, highlighting the need for comprehensive validation of all parts of a URI to prevent LFI attacks.
OSV
CVE-2024-2928: A Local File Inclusion (LFI) vulnerability was identified in mlflow/mlflow, specifically in version 2
osv·2024-06-06
CVE-2024-2928 CVE-2024-2928: A Local File Inclusion (LFI) vulnerability was identified in mlflow/mlflow, specifically in version 2
A Local File Inclusion (LFI) vulnerability was identified in mlflow/mlflow, specifically in version 2.9.2, which was fixed in version 2.11.3. This vulnerability arises from the application's failure to properly validate URI fragments for directory traversal sequences such as '../'. An attacker can exploit this flaw by manipulating the fragment part of the URI to read arbitrary files on the local file system, including sensitive files like '/etc/passwd'. The vulnerability is a bypass to a previous patch that only addressed similar manipulation within the URI's query string, highlighting the need for comprehensive validation of all parts of a URI to prevent LFI attacks.
GHSA
Local File Inclusion in mlflow
ghsa·2024-06-06
CVE-2024-2928 [HIGH] CWE-22 Local File Inclusion in mlflow
Local File Inclusion in mlflow
A Local File Inclusion (LFI) vulnerability was identified in mlflow/mlflow, specifically in version 2.9.2, which was fixed in version 2.11.3. This vulnerability arises from the application's failure to properly validate URI fragments for directory traversal sequences such as '../'. An attacker can exploit this flaw by manipulating the fragment part of the URI to read arbitrary files on the local file system, including sensitive files like '/etc/passwd'. The vulnerability is a bypass to a previous patch that only addressed similar manipulation within the URI's query string, highlighting the need for comprehensive validation of all parts of a URI to prevent LFI attacks.
No detection rules found.
Nuclei
MLflow < 2.11.3 - Path Traversal
nuclei·CVSS 7.5
CVE-2024-2928 [HIGH] MLflow < 2.11.3 - Path Traversal
MLflow < 2.11.3 - Path Traversal
MLflow versions prior to 2.11.3 are vulnerable to a Path Traversal attack due to improper URI fragment parsing. This vulnerability allows attackers to read arbitrary files on the server, potentially exposing sensitive information.
Template:
id: CVE-2024-2928
info:
name: MLflow < 2.11.3 - Path Traversal
author: jyjyjy25,gy741,oriing,ANseunghyeon,woo4826
severity: high
description: |
MLflow versions prior to 2.11.3 are vulnerable to a Path Traversal attack due to improper URI fragment parsing. This vulnerability allows attackers to read arbitrary files on the server, potentially exposing sensitive information.
impact: |
Successful exploitation could allow an attacker to read arbitrary files such as /etc/passwd in the local file system.
remediation: |
Upgr
2024-06-06
Published