BIT-mlflow-2026-8147

See a problem?
Import Source
https://github.com/bitnami/vulndb/tree/main/data/mlflow/BIT-mlflow-2026-8147.json
JSON Data
https://api.osv.dev/v1/vulns/BIT-mlflow-2026-8147
Aliases
  • CVE-2026-8147
Published
2026-07-06T23:44:39.868Z
Modified
2026-07-07T02:00:04.578163453Z
Summary
Authorization Bypass in mlflow/mlflow
Details

In MLflow versions prior to 3.14.0, when running with authentication enabled, the trace API endpoints lack proper authorization validators. This allows any authenticated user to bypass experiment-level authorization controls on all trace operations, including reading, deleting, and modifying traces on experiments they do not have permission to access. The issue arises from the _before_request handler, which does not register authorization validators for trace endpoints, resulting in requests proceeding without validation. This vulnerability can expose sensitive data, destroy audit logs, and allow unauthorized modifications.

Database specific
{
    "cpes": [
        "cpe:2.3:a:lfprojects:mlflow:*:*:*:*:*:*:*:*"
    ],
    "severity": "High"
}
References

Affected packages

Bitnami / mlflow

Package

Name
mlflow
Purl
pkg:bitnami/mlflow

Severity

  • 8.1 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N CVSS Calculator

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.14.0

Database specific

source
"https://github.com/bitnami/vulndb/tree/main/data/mlflow/BIT-mlflow-2026-8147.json"