CVE-2025-15031

Source
https://cve.org/CVERecord?id=CVE-2025-15031
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-15031.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-15031
Aliases
Published
2026-03-18T22:06:47.300Z
Modified
2026-07-16T03:30:50.686786241Z
Severity
  • 8.1 (High) CVSS_V3 - CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N CVSS Calculator
Summary
Path Traversal Vulnerability in mlflow/mlflow
Details

A vulnerability in MLflow's pyfunc extraction process allows for arbitrary file writes due to improper handling of tar archive entries. Specifically, the use of tarfile.extractall without path validation enables crafted tar.gz files containing .. or absolute paths to escape the intended extraction directory. This issue affects the latest version of MLflow and poses a high/critical risk in scenarios involving multi-tenant environments or ingestion of untrusted artifacts, as it can lead to arbitrary file overwrites and potential remote code execution.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/15xxx/CVE-2025-15031.json",
    "cwe_ids": [
        "CWE-22"
    ],
    "cna_assigner": "@huntr_ai"
}
References

Affected packages

Git / github.com/mlflow/mlflow

Affected ranges

Type
GIT
Repo
https://github.com/mlflow/mlflow
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
Database specific
{
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "3.10.1"
        }
    ],
    "source": "CPE_RANGE",
    "cpe": "cpe:2.3:a:lfprojects:mlflow:*:*:*:*:*:*:*:*"
}

Affected versions

1.*
1.0.0
Other
nightly
v0.*
v0.2.0
v0.2.1
v0.3.0
v0.4.0
v0.4.1
v0.4.2
v0.5.0
v0.6.0
v0.7
v0.8.0
v0.8.1
v1.*
v1.7.0
v2.*
v2.2.0
v3.*
v3.0.0
v3.10.0
v3.10.0rc0
v3.10.1

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-15031.json"