Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

MLflow — Vulnerabilities & Security Advisories 17

All 17 CVE vulnerabilities found in MLflow, with AI-generated Chinese analysis, references, and POCs.

Vendor: MLflow

CVE IDTitleCVSSSeverityPublished
CVE-2026-33866 Authorization Bypass in MLflow AJAX Endpoint CWE-862 4.3AIMediumAI2026-04-07
CVE-2026-33865 Stored XSS via unsafe YAML parsing in MLflow CWE-79 5.4AIMediumAI2026-04-07
CVE-2026-2635 MLflow Use of Default Password Authentication Bypass Vulnerability CWE-1393 9.8AICriticalAI2026-02-20
CVE-2026-2033 MLflow Tracking Server Artifact Handler Directory Traversal Remote Code Execution Vulnerability CWE-22 9.8AICriticalAI2026-02-20
CVE-2025-11200 MLflow Weak Password Requirements Authentication Bypass Vulnerability CWE-521 9.8AICriticalAI2025-10-29
CVE-2025-11201 MLflow Tracking Server Model Creation Directory Traversal Remote Code Execution Vulnerability CWE-22 9.8AICriticalAI2025-10-29
CVE-2025-52967 MLflow 代码问题漏洞 CWE-918 5.8 Medium2025-06-23
CVE-2024-37061 MLflow 安全漏洞 CWE-94 8.8 High2024-06-04
CVE-2024-37060 MLflow 安全漏洞 CWE-502 8.8 High2024-06-04
CVE-2024-37059 Mlflow 安全漏洞 CWE-502 8.8 High2024-06-04
CVE-2024-37058 MLflow 安全漏洞 CWE-502 8.8 High2024-06-04
CVE-2024-37057 MLflow 安全漏洞 CWE-502 8.8 High2024-06-04
CVE-2024-37056 MLflow 安全漏洞 CWE-502 8.8 High2024-06-04
CVE-2024-37055 MLflow 安全漏洞 CWE-502 8.8 High2024-06-04
CVE-2024-37054 MLflow 安全漏洞 CWE-502 8.8 High2024-06-04
CVE-2024-37053 Mlflow 安全漏洞 CWE-502 8.8 High2024-06-04
CVE-2024-37052 Mlflow 安全漏洞 CWE-502 8.8 High2024-06-04

All 17 known CVE vulnerabilities affecting MLflow with full Chinese analysis, references, and POCs where available.