Top products
Latest CVEs
The 15 most recently published vulnerabilities affecting mlflow.
- CVE-2026-4035Environment Variable Resolution Vulnerability in mlflow/mlflow7.7
- CVE-2026-3198Improper Access Control in mlflow/mlflow6.5
- CVE-2026-2651Missing Authorization Validation in mlflow/mlflow9.0
- CVE-2026-2734Authorization Bypass in SearchModelVersions in mlflow/mlflow6.5
- CVE-2026-2611Improper Origin Validation in mlflow/mlflow9.6
- CVE-2026-4137Incomplete Fix for CVE-2025-10279: Insecure Temporary Directory Permissions in mlflow/mlflow7.8
- CVE-2026-2652Authentication Bypass in mlflow/mlflow8.6
- CVE-2026-2614Arbitrary File Read via Prompt Tag Source Validation Bypass in mlflow/mlflow7.5
- CVE-2026-2393Server-Side Request Forgery (SSRF) in mlflow/mlflow7.1
- CVE-2026-33866Authorization Bypass in MLflow AJAX Endpoint4.3
- CVE-2026-33865Stored XSS via unsafe YAML parsing in MLflow5.4
- CVE-2026-0545Missing Authentication for Critical Function in mlflow/mlflow9.8
- CVE-2026-0596Command Injection in mlflow/mlflow7.8
- CVE-2025-15379Command Injection in mlflow/mlflow9.8
- CVE-2025-15036Path Traversal Vulnerability in mlflow/mlflow10.0