Show filters
46 Total Results
Displaying 41-46 of 46
Sort by:
Attacker Value
Unknown

CVE-2023-2780

Disclosure Date: May 17, 2023 (last updated October 08, 2023)
Path Traversal: '\..\filename' in GitHub repository mlflow/mlflow prior to 2.3.1.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-30172

Disclosure Date: May 11, 2023 (last updated October 08, 2023)
A directory traversal vulnerability in the /get-artifact API method of the mlflow platform up to v2.0.1 allows attackers to read arbitrary files on the server via the path parameter.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-2356

Disclosure Date: April 28, 2023 (last updated October 08, 2023)
Relative Path Traversal in GitHub repository mlflow/mlflow prior to 2.3.1.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-1177

Disclosure Date: March 24, 2023 (last updated October 10, 2023)
Path Traversal: '\..\filename' in GitHub repository mlflow/mlflow prior to 2.2.1.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-1176

Disclosure Date: March 24, 2023 (last updated October 08, 2023)
Absolute Path Traversal in GitHub repository mlflow/mlflow prior to 2.2.2.
Attack Vector: LocalPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-0736

Disclosure Date: February 23, 2022 (last updated February 23, 2025)
Insecure Temporary File in GitHub repository mlflow/mlflow prior to 1.23.1.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
View More Topics  < Previous