CRITICAL 9.6 PyPI
GHSA-3v79-q7ph-j75h · BIT-mlflow-2024-27133, CVE-2024-27133 MLFlow Cross-site Scripting vulnerability leads to client-side Remote Code Execution
Modified: 4/8/2025
package
PyPI / mlflow
pkg:pypi/mlflow
HIGH 7.5 PyPI
GHSA-42h5-h8qh-vv9v · BIT-mlflow-2026-2614, CVE-2026-2614 MLflow allows an unauthenticated remote attacker to read arbitrary files from the server's filesystem
Modified: 5/28/2026
HIGH 8.8 PyPI
GHSA-43c4-9qgj-x742 · BIT-mlflow-2024-37053, CVE-2024-37053 MLFlow unsafe deserialization
Modified: 1/28/2026
MEDIUM 4.3 PyPI
GHSA-46r5-x6jq-v8g6 · BIT-mlflow-2026-33866, CVE-2026-33866 MLflow is vulnerable to an authorization bypass affecting the AJAX endpoint
Modified: 5/20/2026
MEDIUM 5.9 PyPI
GHSA-49m6-vrr9-2cqm · BIT-mlflow-2025-0453, CVE-2025-0453 MLflow Uncontrolled Resource Consumption vulnerability
Modified: 10/16/2025
CRITICAL 9.1 PyPI
GHSA-4qq5-mxxx-m6gg · BIT-mlflow-2023-6014, CVE-2023-6014 MLflow authentication requirement bypass can allow a user to arbitrarily create an account
Modified: 3/1/2024
LOW 3.8 PyPI
GHSA-4rj2-9gcx-5qhx · BIT-mlflow-2025-1474, CVE-2025-1474 MLflow has Weak Password Requirements
Modified: 4/9/2025
HIGH 7.5 PyPI
GHSA-4rqf-8pfm-p36r · BIT-mlflow-2024-8859, CVE-2024-8859 MLflow has a Local File Read/Path Traversal in dbfs
Modified: 8/6/2025
HIGH 7.0 PyPI
GHSA-4x5p-f36r-mxxr · BIT-mlflow-2025-10279, CVE-2025-10279 mlflow Creates of Temporary File in Directory with Insecure Permissions
Modified: 4/17/2026
CRITICAL 10.0 PyPI
GHSA-554w-xh4j-8w64 · BIT-mlflow-2023-6831, CVE-2023-6831 Path traversal in MLflow
Modified: 2/16/2024
CRITICAL 9.8 PyPI
GHSA-59v3-898r-qwhj · BIT-mlflow-2023-6974, CVE-2023-6974 MLflow Server-Side Request Forgery (SSRF)
Modified: 2/14/2025
HIGH 8.1 PyPI
GHSA-5cvj-7rg6-jggj · BIT-mlflow-2025-11201, CVE-2025-11201 MLflow Tracking Server Model Creation Directory Traversal Remote Code Execution Vulnerability
Modified: 12/5/2025
HIGH 8.1 PyPI
GHSA-5mvj-wmgj-7q8c · BIT-mlflow-2024-1560, CVE-2024-1560 mlflow vulnerable to Path Traversal
Modified: 2/4/2025
CRITICAL 10.0 PyPI
GHSA-5p3h-7fwh-92rc · BIT-mlflow-2023-6018, CVE-2023-6018 Remote Code Execution due to Full Controled File Write in mlflow
Modified: 8/8/2024
CRITICAL 10.0 PyPI
GHSA-5q6c-ffvg-xcm9 · BIT-mlflow-2024-0520, CVE-2024-0520 Remote code execution in mlflow
Modified: 4/8/2025
HIGH 7.5 PyPI
GHSA-5r3q-93q3-f978 · BIT-mlflow-2023-6909, CVE-2023-6909 MLflow Path Traversal Vulnerability
Modified: 2/15/2025
HIGH 7.1 PyPI
GHSA-65h7-c7c4-mghx · BIT-mlflow-2026-2393, CVE-2026-2393 MLflow Has a Server-Side Request Forgery (SSRF) Vulnerability
Modified: 5/28/2026
CRITICAL 9.6 PyPI
GHSA-6749-m5cp-6cg7 · BIT-mlflow-2024-27132, CVE-2024-27132 Cross-site Scripting in MLFlow
Modified: 4/8/2025
HIGH 8.1 PyPI
GHSA-6xj8-rrqx-r4cv · BIT-mlflow-2025-11200, CVE-2025-11200 MLflow Weak Password Requirements Authentication Bypass Vulnerability
Modified: 11/17/2025
HIGH 8.6 PyPI
GHSA-75cm-x2w3-8mgf · BIT-mlflow-2026-2652, CVE-2026-2652 MLflow: unauthenticated access to certain FastAPI routes
Modified: 5/21/2026
HIGH 8.8 PyPI
GHSA-76cg-cfhx-373f · BIT-mlflow-2024-37052, CVE-2024-37052 MLFlow unsafe deserialization
Modified: 1/28/2026
HIGH 8.8 PyPI
GHSA-7p8j-qv6x-f4g4 · BIT-mlflow-2024-37056, CVE-2024-37056 MLFlow unsafe deserialization
Modified: 1/28/2026
CRITICAL 9.1 PyPI
GHSA-7qhf-v65m-g5f3 · CVE-2026-0545 mlflow: FastAPI job endpoints under `/ajax-api/3.0/jobs/*` are not protected by authentication or authorization
Modified: 4/8/2026
CRITICAL PyPI
GHSA-83fm-w79m-64r5 Remote file access vulnerability in `mlflow server` and `mlflow ui` CLIs
Modified: 11/28/2024
MEDIUM 5.4 PyPI
GHSA-8f8q-q2j7-7j2m · BIT-mlflow-2024-3099, CVE-2024-3099 Undefined Behavior in mlflow
Modified: 10/14/2024
MEDIUM 5.4 PyPI
GHSA-969w-gqqr-g6j3 · BIT-mlflow-2025-1473, CVE-2025-1473 MLflow Cross-Site Request Forgery (CSRF) vulnerability
Modified: 8/6/2025
HIGH 8.8 PyPI
GHSA-cv6c-7963-wxcg · BIT-mlflow-2024-37060, CVE-2024-37060 MLFlow unsafe deserialization
Modified: 1/28/2026
HIGH 8.8 PyPI
GHSA-cwgg-w6mp-w9hg · BIT-mlflow-2024-37058, CVE-2024-37058 MLFlow unsafe deserialization
Modified: 1/28/2026
HIGH 8.8 PyPI
GHSA-cxfr-5q3r-2rc2 · BIT-mlflow-2023-6709, CVE-2023-6709 Jinja2 template injection in mlflow
Modified: 11/22/2024
HIGH 7.5 PyPI
GHSA-f42m-mvfv-cgw5 · BIT-mlflow-2024-1593, CVE-2024-1593 mlflow vulnerable to Path Traversal
Modified: 2/4/2025
CRITICAL 10.0 PyPI
GHSA-f798-qm4r-23r5 · BIT-mlflow-2023-6015, CVE-2023-6015 MLflow allowed arbitrary files to be PUT onto the server
Modified: 2/16/2024
HIGH 7.5 PyPI
GHSA-f82r-jj5r-6g97 · BIT-mlflow-2024-1483, CVE-2024-1483 mlflow Path Traversal vulnerability
Modified: 2/4/2025
HIGH 8.8 PyPI
GHSA-ffw3-6378-cqgp · BIT-mlflow-2023-4033, CVE-2023-4033 mlflow vulnerable to OS Command Injection
Modified: 11/22/2024
MEDIUM 5.4 PyPI
GHSA-fh64-r2vc-xvhr · BIT-mlflow-2026-33865, CVE-2026-33865 MLflow is vulnerable to Stored Cross-Site Scripting (XSS) caused by unsafe parsing of YAML-based MLmodel artifacts in its web interface
Modified: 5/20/2026
HIGH 8.1 PyPI
GHSA-fhff-qmm8-h2fp · BIT-mlflow-2025-15031, CVE-2025-15031 Arbitrary file write via tar traversal in mlflow
Modified: 3/24/2026
CRITICAL 10.0 PyPI
GHSA-fmxj-6h9g-6vw3 · BIT-mlflow-2023-3765, CVE-2023-3765 MLflow Path Traversal vulnerability
Modified: 4/10/2025
HIGH 8.1 PyPI
GHSA-g6pg-52vf-843h · CVE-2025-15381 MLFlow allows Tracing + Assessments Access
Modified: 3/31/2026
HIGH 8.8 PyPI
GHSA-ghv6-9r9j-wh4j · BIT-mlflow-2024-37054, CVE-2024-37054 MLFlow unsafe deserialization
Modified: 1/28/2026
CRITICAL 9.8 PyPI
GHSA-gq3w-7jj3-x7gr · CVE-2026-2635 MLflow Use of Default Password Authentication Bypass Vulnerability
Modified: 3/17/2026
CRITICAL 9.8 PyPI
GHSA-hh8p-p8mp-gqhm · BIT-mlflow-2023-6975, CVE-2023-6975 MLFlow Path Traversal Vulnerability
Modified: 2/16/2024
CRITICAL 9.3 PyPI
GHSA-hq88-wg7q-gp4g · BIT-mlflow-2024-3573, CVE-2024-3573 mlflow vulnerable to Path Traversal
Modified: 4/8/2025
HIGH 8.8 PyPI
GHSA-hvc6-42vf-jhf8 · BIT-mlflow-2023-6940, CVE-2023-6940 mlflow Command Injection vulnerability
Modified: 2/14/2025
HIGH 7.5 PyPI
GHSA-j46q-5pxx-8vmw · BIT-mlflow-2024-2928, CVE-2024-2928 Local File Inclusion in mlflow
Modified: 4/8/2025
HIGH 7.5 PyPI
GHSA-j62r-wxqq-f3gf · BIT-mlflow-2024-1558, CVE-2024-1558 mlflow vulnerable to Path Traversal
Modified: 2/4/2025
HIGH 8.8 PyPI
GHSA-j8mg-pqc5-x9gj · BIT-mlflow-2024-37057, CVE-2024-37057 MLFlow unsafe deserialization
Modified: 1/28/2026
HIGH 7.5 PyPI
GHSA-m49c-5c52-6696 · BIT-mlflow-2024-1594, CVE-2024-1594 mlflow vulnerable to Path Traversal
Modified: 2/4/2025
MEDIUM 5.4 PyPI
GHSA-p4jx-q62p-x5jr · BIT-mlflow-2024-4263, CVE-2024-4263 MLflow allows low privilege users to delete any artifact
Modified: 2/22/2026
HIGH 8.1 PyPI
GHSA-pgqp-8h46-6x4j · BIT-mlflow-2025-14279, CVE-2025-14279 MLFlow is vulnerable to DNS rebinding attacks due to a lack of Origin header validation
Modified: 4/17/2026
HIGH 8.8 PyPI
GHSA-pqcv-qw2r-r859 · BIT-mlflow-2024-37061, CVE-2024-37061 MLFlow improper input validation
Modified: 2/4/2026
HIGH 8.1 PyPI
GHSA-q2r8-vmq7-fpx2 · CVE-2026-2033 MLflow Tracking Server Artifact Handler Directory Traversal Remote Code Execution Vulnerability
Modified: 3/17/2026
MEDIUM 5.3 PyPI
GHSA-q3gw-8236-5jw4 · BIT-mlflow-2024-6838, CVE-2024-6838 MLflow Uncontrolled Resource Consumption vulnerability
Modified: 4/2/2025
HIGH 7.5 PyPI
GHSA-qg8p-32gr-gh6x · BIT-mlflow-2023-6977, CVE-2023-6977 MLflow Local File Disclosure Vulnerability
Modified: 2/14/2025
HIGH 7.0 PyPI
GHSA-qpgc-w4mg-6v92 · BIT-mlflow-2024-27134, CVE-2024-27134 MLflow's excessive directory permissions allow local privilege escalation
Modified: 2/3/2025
CRITICAL 10.0 PyPI
GHSA-r23q-823p-vmf7 · BIT-mlflow-2025-15379, CVE-2025-15379 MLflow Command Injection vulnerability
Modified: 4/29/2026
HIGH 7.5 PyPI
GHSA-rfqq-wq6w-72jm · BIT-mlflow-2024-3848, CVE-2024-3848 MLflow has a Local File Read/Path Traversal bypass
Modified: 4/8/2025
CRITICAL 9.6 PyPI
GHSA-rvhj-8chj-8v3c · BIT-mlflow-2026-0596, CVE-2026-0596 Mlflow: Command Injection when serving models with enable_mlserver=True
Modified: 5/20/2026
HIGH 8.8 PyPI
GHSA-v945-r3rc-6fjm · BIT-mlflow-2023-6753, CVE-2023-6753 Path traversal in MLflow
Modified: 4/9/2025
CRITICAL 9.6 PyPI
GHSA-vhcx-3pq2-4fvc · BIT-mlflow-2025-15036, CVE-2025-15036 MLFlow path traversal vulnerability
Modified: 4/29/2026
HIGH 8.2 PyPI
GHSA-vqj2-4v8m-8vrq · BIT-mlflow-2022-0736, CVE-2022-0736 Insecure Temporary File in mlflow
Modified: 2/21/2025
MEDIUM 6.5 PyPI
GHSA-vwhf-3v6x-wff8 · BIT-mlflow-2023-6568, CVE-2023-6568 Cross-site Scripting (XSS) in MLflow
Modified: 4/16/2024
HIGH 7.5 PyPI
GHSA-wc6j-5g83-xfm6 · BIT-mlflow-2023-30172, CVE-2023-30172 mflow vulnerable to directory traversal
Modified: 2/16/2024
HIGH 8.8 PyPI
GHSA-wf7f-8fxf-xfxc · BIT-mlflow-2024-37059, CVE-2024-37059 MLFlow unsafe deserialization
Modified: 1/28/2026
CRITICAL 9.8 PyPI
GHSA-wjq3-7jxx-whj9 · BIT-mlflow-2023-2780, CVE-2023-2780 mlflow Path Traversal vulnerability
Modified: 9/24/2024
LOW 3.3 PyPI
GHSA-wp72-7hj9-5265 · BIT-mlflow-2023-1176, CVE-2023-1176 Remote file existence check vulnerability in `mlflow server` and `mlflow ui` CLIs
Modified: 9/25/2024
HIGH 7.5 PyPI
GHSA-wqxf-447m-6f5f · BIT-mlflow-2023-43472, CVE-2023-43472 Information exposure in MLflow
Modified: 2/16/2024
HIGH 8.8 PyPI
GHSA-wv8q-4f85-2p8p · BIT-mlflow-2023-6976, CVE-2023-6976 MLflow Path Traversal Vulnerability
Modified: 2/16/2024
MEDIUM 5.8 PyPI
GHSA-wxj7-3fx5-pp9m · BIT-mlflow-2025-52967, CVE-2025-52967 MLFlow SSRF via gateway_proxy_handler
Modified: 9/25/2025
HIGH 8.8 PyPI
GHSA-x38x-g6gr-jqff · BIT-mlflow-2024-37055, CVE-2024-37055 MLFlow unsafe deserialization
Modified: 1/28/2026
CRITICAL 10.0 PyPI
GHSA-x422-6qhv-p29g · BIT-mlflow-2023-2356, CVE-2023-2356 Relative path traversal in mlflow
Modified: 2/16/2025
HIGH 7.5 PyPI
GHSA-xch3-2f9x-wh9f · BIT-mlflow-2025-14287, CVE-2025-14287 MLflow has a command injection in mlflow/sagemaker/__init__.py
Modified: 4/17/2026
CRITICAL 9.8 PyPI
GHSA-xg73-94fp-g449 · BIT-mlflow-2023-1177, CVE-2023-1177 mlflow is vulnerable to remote file access in `mlflow server` and `mlflow ui` CLIs
Modified: 2/22/2026
— PyPI
PYSEC-2022-28 · BIT-mlflow-2022-0736, CVE-2022-0736 Modified: 12/6/2023
HIGH 7.5 PyPI
PYSEC-2023-252 · BIT-mlflow-2023-6909, CVE-2023-6909 Modified: 2/6/2024
HIGH 8.1 PyPI
PYSEC-2023-253 · BIT-mlflow-2023-6831, CVE-2023-6831 Modified: 2/14/2024
MEDIUM 6.1 PyPI
PYSEC-2023-260 · BIT-mlflow-2023-6568, CVE-2023-6568 Modified: 4/16/2024
— PyPI
PYSEC-2023-28 · BIT-mlflow-2023-1176, CVE-2023-1176 Modified: 12/6/2023
HIGH 7.8 PyPI
PYSEC-2023-280 · BIT-mlflow-2023-4033, CVE-2023-4033 Modified: 11/21/2024
HIGH 8.8 PyPI
PYSEC-2023-281 · BIT-mlflow-2023-6709, CVE-2023-6709 Modified: 11/21/2024
— PyPI
PYSEC-2023-29 · BIT-mlflow-2023-1177, CVE-2023-1177 Modified: 2/22/2026
CRITICAL 10.0 PyPI
PYSEC-2023-308 · BIT-mlflow-2023-3765, CVE-2023-3765 Modified: 4/9/2025
HIGH 8.8 PyPI
PYSEC-2023-309 · BIT-mlflow-2023-6753, CVE-2023-6753 Modified: 4/9/2025
— PyPI
PYSEC-2023-68 · BIT-mlflow-2023-2356, CVE-2023-2356 Modified: 12/6/2023
— PyPI
PYSEC-2023-69 · BIT-mlflow-2023-2780, CVE-2023-2780 Modified: 12/6/2023
— PyPI
PYSEC-2023-70 · BIT-mlflow-2023-30172, CVE-2023-30172 Modified: 12/6/2023
HIGH 7.0 PyPI
PYSEC-2024-224 · BIT-mlflow-2024-27134, CVE-2024-27134 Modified: 2/3/2025
HIGH 8.8 PyPI
PYSEC-2024-239 · BIT-mlflow-2024-0520, CVE-2024-0520 Modified: 4/8/2025
CRITICAL 9.6 PyPI
PYSEC-2024-240 · BIT-mlflow-2024-27132, CVE-2024-27132 Modified: 4/8/2025
CRITICAL 9.6 PyPI
PYSEC-2024-241 · BIT-mlflow-2024-27133, CVE-2024-27133 Modified: 4/8/2025
HIGH 7.5 PyPI
PYSEC-2024-242 · BIT-mlflow-2024-2928, CVE-2024-2928 Modified: 4/8/2025
CRITICAL 9.3 PyPI
PYSEC-2024-243 · BIT-mlflow-2024-3573, CVE-2024-3573 Modified: 4/8/2025
HIGH 7.5 PyPI
PYSEC-2024-244 · BIT-mlflow-2024-3848, CVE-2024-3848 Modified: 4/8/2025
— PyPI
PYSEC-2024-51 · BIT-mlflow-2024-4263, CVE-2024-4263 Modified: 2/22/2026
MEDIUM 5.5 PyPI
PYSEC-2025-17 · BIT-mlflow-2025-1474, CVE-2025-1474 Modified: 4/9/2025
— PyPI
PYSEC-2025-52 · BIT-mlflow-2025-52967, CVE-2025-52967 Modified: 5/12/2026
MEDIUM 5.4 PyPI
PYSEC-2026-93 · BIT-mlflow-2026-33865, CVE-2026-33865 Modified: 5/20/2026
MEDIUM 4.3 PyPI
PYSEC-2026-94 · BIT-mlflow-2026-33866, CVE-2026-33866 Modified: 5/20/2026