MEDIUM 4.3

PYSEC-2026-94

상세

MLflow is vulnerable to an authorization bypass affecting the AJAX endpoint used to download saved model artifacts. Due to missing access‑control validation, a user without permissions to a given experiment can directly query this endpoint and retrieve model artifacts they are not authorized to access.

This issue affects MLflow version through 3.10.1

이 버전이 영향받나요?

사용 중인 패키지 버전을 입력하면 즉시 평가합니다.

영향 패키지

PyPI / mlflow

최초 영향 버전: 0 수정 버전: 3.11.0rc0

수정 pip install --upgrade 'mlflow>=3.11.0rc0'

참고

https://cert.pl/en/posts/2026/04/CVE-2026-33865/ [ADVISORY]
https://github.com/mlflow/mlflow/pull/21708 [FIX]
https://afine.com/blogs/attacking-mlflow-how-ml-artifacts-become-attack-vectors [EVIDENCE]