Vulnerabilities
CVE-2026-2734
MLflow authenticated users can enumerate any registered model versions due to lack of per-model permissions checks
CVE-2026-33866
CVE-2026-33866
CVE-2025-52967
CVE-2025-52967
CVE-2026-33865
CVE-2026-33865
CVE-2023-4033
CVE-2023-4033
CVE-2024-27134
CVE-2024-27134
CVE-2023-2356
CVE-2023-2356
CVE-2023-30172
CVE-2023-30172
CVE-2023-2780
CVE-2023-2780
CVE-2023-1176
CVE-2023-1176
CVE-2023-6568
CVE-2023-6568
CVE-2023-6831
CVE-2023-6831
CVE-2023-6909
CVE-2023-6909
CVE-2023-6753
CVE-2023-6753
CVE-2024-3848
CVE-2024-3848
CVE-2023-3765
CVE-2023-3765
CVE-2023-6709
CVE-2023-6709
CVE-2023-1177
CVE-2023-1177
CVE-2024-4263
CVE-2024-4263
CVE-2024-3573
CVE-2024-3573
CVE-2024-2928
CVE-2024-2928
CVE-2024-27133
CVE-2024-27133
CVE-2024-27132
CVE-2024-27132
CVE-2024-0520
CVE-2024-0520
CVE-2025-1474
CVE-2025-1474
CVE-2026-33866
MLflow is vulnerable to an authorization bypass affecting the AJAX endpoint
CVE-2026-33865
MLflow is vulnerable to Stored Cross-Site Scripting (XSS) caused by unsafe parsing of YAML-based MLmodel artifacts in its web interface
CVE-2026-10803
CVE-2026-10803
CVE-2026-4137
MLFlow Creates a Temporary File With Insecure Permissions
CVE-2026-2611
MLflow: Improper Origin Validation in MLflow Assistant /ajax-api Endpoints Enables Browser-Mediated Local Command Execution
CVE-2026-2393
MLflow Has a Server-Side Request Forgery (SSRF) Vulnerability
CVE-2026-2614
MLflow allows an unauthenticated remote attacker to read arbitrary files from the server's filesystem
CVE-2026-2652
MLflow: unauthenticated access to certain FastAPI routes
CVE-2026-0596
Mlflow: Command Injection when serving models with enable_mlserver=True
CVE-2025-15036
MLFlow path traversal vulnerability
CVE-2025-15379
MLflow Command Injection vulnerability
CVE-2025-14287
MLflow has a command injection in mlflow/sagemaker/__init__.py
CVE-2025-14279
MLFlow is vulnerable to DNS rebinding attacks due to a lack of Origin header validation
CVE-2025-10279
mlflow Creates of Temporary File in Directory with Insecure Permissions
CVE-2026-0545
mlflow: FastAPI job endpoints under `/ajax-api/3.0/jobs/*` are not protected by authentication or authorization
CVE-2025-15381
MLFlow allows Tracing + Assessments Access
CVE-2025-15031
Arbitrary file write via tar traversal in mlflow
CVE-2026-2033
MLflow Tracking Server Artifact Handler Directory Traversal Remote Code Execution Vulnerability
CVE-2026-2635
MLflow Use of Default Password Authentication Bypass Vulnerability
CVE-2024-4263
MLflow allows low privilege users to delete any artifact
CVE-2023-1177
mlflow is vulnerable to remote file access in `mlflow server` and `mlflow ui` CLIs
CVE-2024-37061
MLFlow improper input validation
CVE-2024-37057
MLFlow unsafe deserialization
CVE-2024-37055
MLFlow unsafe deserialization
CVE-2024-37054
MLFlow unsafe deserialization
CVE-2024-37052
MLFlow unsafe deserialization
CVE-2024-37058
MLFlow unsafe deserialization
CVE-2024-37060
MLFlow unsafe deserialization
CVE-2024-37056
MLFlow unsafe deserialization
CVE-2024-37059
MLFlow unsafe deserialization
CVE-2024-37053
MLFlow unsafe deserialization
CVE-2025-11201
MLflow Tracking Server Model Creation Directory Traversal Remote Code Execution Vulnerability
CVE-2025-11200
MLflow Weak Password Requirements Authentication Bypass Vulnerability
CVE-2025-0453
MLflow Uncontrolled Resource Consumption vulnerability
CVE-2025-52967
MLFlow SSRF via gateway_proxy_handler
CVE-2024-8859
MLflow has a Local File Read/Path Traversal in dbfs
CVE-2025-1473
MLflow Cross-Site Request Forgery (CSRF) vulnerability
CVE-2023-3765
MLflow Path Traversal vulnerability
CVE-2025-1474
MLflow has Weak Password Requirements
CVE-2023-6753
Path traversal in MLflow
CVE-2024-2928
Local File Inclusion in mlflow
CVE-2024-3848
MLflow has a Local File Read/Path Traversal bypass
CVE-2024-3573
mlflow vulnerable to Path Traversal
CVE-2024-27133
MLFlow Cross-site Scripting vulnerability leads to client-side Remote Code Execution
CVE-2024-0520
Remote code execution in mlflow
CVE-2024-27132
Cross-site Scripting in MLFlow
CVE-2024-6838
MLflow Uncontrolled Resource Consumption vulnerability
CVE-2022-0736
Insecure Temporary File in mlflow
CVE-2023-2356
Relative path traversal in mlflow
CVE-2023-6909
MLflow Path Traversal Vulnerability
CVE-2023-6940
mlflow Command Injection vulnerability
CVE-2023-6974
MLflow Server-Side Request Forgery (SSRF)
CVE-2023-6977
MLflow Local File Disclosure Vulnerability
CVE-2024-1560
mlflow vulnerable to Path Traversal
CVE-2024-1594
mlflow vulnerable to Path Traversal
CVE-2024-1593
mlflow vulnerable to Path Traversal
CVE-2024-1483
mlflow Path Traversal vulnerability
CVE-2024-1558
mlflow vulnerable to Path Traversal
CVE-2024-27134
MLflow's excessive directory permissions allow local privilege escalation
GHSA-83fm-w79m-64r5
Remote file access vulnerability in `mlflow server` and `mlflow ui` CLIs
CVE-2023-4033
mlflow vulnerable to OS Command Injection
CVE-2023-6709
Jinja2 template injection in mlflow
CVE-2024-3099
Undefined Behavior in mlflow
CVE-2023-1176
Remote file existence check vulnerability in `mlflow server` and `mlflow ui` CLIs
CVE-2023-2780
mlflow Path Traversal vulnerability
CVE-2023-6018
Remote Code Execution due to Full Controled File Write in mlflow
CVE-2023-6568
Cross-site Scripting (XSS) in MLflow
CVE-2023-6014
MLflow authentication requirement bypass can allow a user to arbitrarily create an account
CVE-2023-30172
mflow vulnerable to directory traversal
CVE-2023-6015
MLflow allowed arbitrary files to be PUT onto the server
CVE-2023-43472
Information exposure in MLflow
CVE-2023-6831
Path traversal in MLflow
CVE-2023-6976
MLflow Path Traversal Vulnerability
CVE-2023-6975
MLFlow Path Traversal Vulnerability
CVE-2022-0736
CVE-2022-0736
Ready to move
Start Securing
Free, no credit card | First findings in minutes