BIT-mlflow-2026-3198

See a problem?

Import Source

https://github.com/bitnami/vulndb/tree/main/data/mlflow/BIT-mlflow-2026-3198.json

JSON Data

https://api.osv.dev/v1/vulns/BIT-mlflow-2026-3198

Aliases

CVE-2026-3198

Published

2026-06-05T05:49:06.558Z

Modified

2026-06-05T07:45:34.899442794Z

Summary

Improper Access Control in mlflow/mlflow

Details

MLflow 3.9.0 with basic-auth (--app-name basic-auth) fails to enforce authorization checks for multiple Gateway API 'list' endpoints. Specifically, the BEFORE_REQUEST_HANDLERS dictionary in mlflow/server/auth/__init__.py does not include entries for ListGatewaySecretInfos, ListGatewayEndpoints, and ListGatewayModelDefinitions. This allows any authenticated user, regardless of their assigned permissions, to enumerate all gateway secrets, endpoints, and model definitions. This vulnerability exposes sensitive information, such as API keys, endpoint configurations, and proprietary model definitions, to unauthorized users.

Database specific

{
    "severity": "Medium",
    "cpes": [
        "cpe:2.3:a:lfprojects:mlflow:*:*:*:*:*:*:*:*"
    ]
}

References

Affected packages

Bitnami / mlflow

Package

Name: mlflow
Purl: pkg:bitnami/mlflow

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator

Affected ranges

Type: SEMVER
Events: Introduced

3.9.0

Fixed

3.10.0

Database specific

source

"https://github.com/bitnami/vulndb/tree/main/data/mlflow/BIT-mlflow-2026-3198.json"