Lfprojects: >> Mlflow >> 2.6.0 Security Vulnerabilities
An attacker is able to arbitrarily create an account in MLflow bypassing any authentication requirment.
CVSS Score
9.1
EPSS Score
0.009
Published
2023-11-16
MLflow allowed arbitrary files to be PUT onto the server.
CVSS Score
10.0
EPSS Score
0.008
Published
2023-11-16
Page 5