CRITICAL 9.6

PYSEC-2024-241

Details

Insufficient sanitization in MLflow leads to XSS when running a recipe that uses an untrusted dataset. This issue leads to a client-side RCE when running the recipe in Jupyter Notebook. The vulnerability stems from lack of sanitization over dataset table fields.

Are you affected?

Enter the version of the package you're using.

Affected packages

PyPI / mlflow

Introduced in: 0 Fixed in: 2.10.0

Fix pip install --upgrade 'mlflow>=2.10.0'

References

https://research.jfrog.com/vulnerabilities/mlflow-untrusted-dataset-xss-jfsa-2024-000631932/ [WEB]
https://github.com/mlflow/mlflow/pull/10893 [REPORT]