MLflow's excessive directory permissions allow local privilege escalation

GHSA-qpgc-w4mg-6v92 · BIT-mlflow-2024-27134 · CVE-2024-27134 · PYSEC-2024-224

Published Nov 25, 2024 · Modified Feb 3, 2025

Description

Excessive directory permissions in MLflow leads to local privilege escalation when using spark_udf. This behavior can be exploited by a local attacker to gain elevated permissions by using a ToCToU attack. The issue is only relevant when the spark_udf() MLflow API is called.

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2024-27134
WEB https://github.com/mlflow/mlflow/pull/10874
WEB https://github.com/mlflow/mlflow/commit/0b1d995d66a678153e01ed3040f3f4dfc16a0d6b
PACKAGE https://github.com/mlflow/mlflow

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes