HIGH 7.8
PYSEC-2023-280
Details
OS Command Injection in GitHub repository mlflow/mlflow prior to 2.6.0.
Are you affected?
Enter the version of the package you're using.
Affected packages
PyPI / mlflow
Introduced in:
0 Fixed in: 6dde93758d42455cb90ef324407919ed67668b9b Fix
pip install --upgrade 'mlflow>=6dde93758d42455cb90ef324407919ed67668b9b'