cbcvebase.

Lfprojects Mlflow vulnerabilities

69 known vulnerabilities affecting lfprojects/mlflow.

Total CVEs
69
CISA KEV
0
Public exploits
14
Exploited in wild
2
Severity breakdown
CRITICAL15HIGH43MEDIUM9LOW2

Vulnerabilities

Page 4 of 4
CVE-2025-1473P4HIGHCVSS 7.1≥ 2.17.0, < 2.20.12025-03-20
CVE-2025-1473 [HIGH] CWE-352 CVE-2025-1473: A Cross-Site Request Forgery (CSRF) vulnerability exists in the Signup feature of mlflow/mlflow vers A Cross-Site Request Forgery (CSRF) vulnerability exists in the Signup feature of mlflow/mlflow versions 2.17.0 to 2.20.1. This vulnerability allows an attacker to create a new account, which may be used to perform unauthorized actions on behalf of the malicious user.
ghsanvdosv
CVE-2025-1474P4MEDIUMCVSS 5.5fixed in 2.19.02025-03-20
CVE-2025-1474 [MEDIUM] CWE-521 CVE-2025-1474: In mlflow/mlflow version 2.18, an admin is able to create a new user account without setting a passw In mlflow/mlflow version 2.18, an admin is able to create a new user account without setting a password. This vulnerability could lead to security risks, as accounts without passwords may be susceptible to unauthorized access. Additionally, this issue violates best practices for secure user account management. The issue is fixed in version 2.19.0.
ghsanvdosv
CVE-2024-4263P4MEDIUMCVSS 5.4fixed in 2.12.12024-05-16
CVE-2024-4263 [MEDIUM] CWE-284 CVE-2024-4263: A broken access control vulnerability exists in mlflow/mlflow versions before 2.10.1, where low priv A broken access control vulnerability exists in mlflow/mlflow versions before 2.10.1, where low privilege users with only EDIT permissions on an experiment can delete any artifacts. This issue arises due to the lack of proper validation for DELETE requests by users with EDIT permissions, allowing them to perform unauthorized deletions of artifacts. Th
ghsanvdosv
CVE-2025-52967P4MEDIUMCVSS 5.8fixed in 3.1.02025-06-23
CVE-2025-52967 [MEDIUM] CWE-918 CVE-2025-52967: gateway_proxy_handler in MLflow before 3.1.0 lacks gateway_path validation. gateway_proxy_handler in MLflow before 3.1.0 lacks gateway_path validation.
ghsanvdosv
CVE-2026-33865P4MEDIUMCVSS 5.4≤ 3.10.12026-04-07
CVE-2026-33865 [MEDIUM] CWE-79 CVE-2026-33865: MLflow is vulnerable to Stored Cross-Site Scripting (XSS) caused by unsafe parsing of YAML-based MLm MLflow is vulnerable to Stored Cross-Site Scripting (XSS) caused by unsafe parsing of YAML-based MLmodel artifacts in its web interface. An authenticated attacker can upload a malicious MLmodel file containing a payload that executes when another user views the artifact in the UI. This allows actions such as session hijacking or performing operations
nvd
CVE-2024-6838P4MEDIUMCVSS 5.3v2.13.22025-03-20
CVE-2024-6838 [MEDIUM] CWE-400 CVE-2024-6838: In mlflow/mlflow version v2.13.2, a vulnerability exists that allows the creation or renaming of an In mlflow/mlflow version v2.13.2, a vulnerability exists that allows the creation or renaming of an experiment with a large number of integers in its name due to the lack of a limit on the experiment name. This can cause the MLflow UI panel to become unresponsive, leading to a potential denial of service. Additionally, there is no character limit in th
ghsanvdosv
CVE-2026-33866P4MEDIUMCVSS 4.3≤ 3.10.12026-04-07
CVE-2026-33866 [MEDIUM] CWE-862 CVE-2026-33866: MLflow is vulnerable to an authorization bypass affecting the AJAX endpoint used to download saved m MLflow is vulnerable to an authorization bypass affecting the AJAX endpoint used to download saved model artifacts. Due to missing access‑control validation, a user without permissions to a given experiment can directly query this endpoint and retrieve model artifacts they are not authorized to access. This issue affects MLflow version through 3.1
nvd
CVE-2026-10803P4LOWCVSS 3.6≤ 3.10.0v3.0+10 more2026-06-04
CVE-2026-10803 [LOW] CWE-327 CVE-2026-10803: A flaw has been found in MLflow up to 3.10.0. This issue affects the function mlflow.data.digest_uti A flaw has been found in MLflow up to 3.10.0. This issue affects the function mlflow.data.digest_utils of the file mlflow/data/digest_utils.py of the component Dataset Digest Computation. This manipulation causes use of weak hash. It is possible to launch the attack on the local host. The attack is considered to have high complexity. The exploitability
nvd
CVE-2023-1176P4LOWCVSS 3.3fixed in 2.2.22023-03-24
CVE-2023-1176 [LOW] CWE-36 CVE-2023-1176: Absolute Path Traversal in GitHub repository mlflow/mlflow prior to 2.2.2. Absolute Path Traversal in GitHub repository mlflow/mlflow prior to 2.2.2.
ghsanvdosv
Lfprojects Mlflow vulnerabilities | cvebase