BIT-mlflow-2024-27132

See a problem?

Import Source

https://github.com/bitnami/vulndb/tree/main/data/mlflow/BIT-mlflow-2024-27132.json

JSON Data

https://api.osv.dev/v1/vulns/BIT-mlflow-2024-27132

Aliases

Published

2024-03-31T18:21:50.638Z

Modified

2025-05-20T10:02:07.006Z

Summary

Insufficient sanitization in MLflow leads to XSS when running an untrusted recipe.

Details

Insufficient sanitization in MLflow leads to XSS when running an untrusted recipe.

This issue leads to a client-side RCE when running an untrusted recipe in Jupyter Notebook.

The vulnerability stems from lack of sanitization over template variables.

Database specific

{
    "cpes": [
        "cpe:2.3:a:lfprojects:mlflow:*:*:*:*:*:*:*:*",
        "cpe:2.3:a:lfprojects:mlflow:*:*:*:*:*:python:*:*"
    ],
    "severity": "Critical"
}

References

Affected packages

Bitnami / mlflow

Package

Name: mlflow
Purl: pkg:bitnami/mlflow

Severity

9.6 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H CVSS Calculator

Affected ranges

Type: SEMVER
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.10.0