Untriaged
Permalink
CVE-2024-27133
7.5 HIGH
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): HIGH
- Privileges required (PR): NONE
- User interaction (UI): REQUIRED
- Scope (S): UNCHANGED
- Confidentiality impact (C): HIGH
- Integrity impact (I): HIGH
- Availability impact (A): HIGH
Insufficient sanitization in MLflow leads to XSS when running a recipe that uses an untrusted dataset.
Insufficient sanitization in MLflow leads to XSS when running a recipe that uses an untrusted dataset. This issue leads to a client-side RCE when running the recipe in Jupyter Notebook. The vulnerability stems from lack of sanitization over dataset table fields.
References
- https://research.jfrog.com/vulnerabilities/mlflow-untrusted-dataset-xss-jfsa-20…
- https://github.com/mlflow/mlflow/pull/10893
- https://research.jfrog.com/vulnerabilities/mlflow-untrusted-dataset-xss-jfsa-20…
- https://github.com/mlflow/mlflow/pull/10893
- https://research.jfrog.com/vulnerabilities/mlflow-untrusted-dataset-xss-jfsa-20… x_transferred
- https://github.com/mlflow/mlflow/pull/10893 x_transferred
- https://research.jfrog.com/vulnerabilities/mlflow-untrusted-dataset-xss-jfsa-20…
- https://github.com/mlflow/mlflow/pull/10893
- https://research.jfrog.com/vulnerabilities/mlflow-untrusted-dataset-xss-jfsa-20… x_transferred
- https://github.com/mlflow/mlflow/pull/10893 x_transferred
Affected products
mlflow
- =<2.9.2
Matching in nixpkgs
pkgs.mlflow-server
Open source platform for the machine learning lifecycle
-
nixos-unstable -
- nixpkgs-unstable 3.3.1
pkgs.python312Packages.mlflow
Open source platform for the machine learning lifecycle
-
nixos-unstable -
- nixpkgs-unstable 3.3.1
pkgs.python313Packages.mlflow
Open source platform for the machine learning lifecycle
-
nixos-unstable -
- nixpkgs-unstable 3.3.1
pkgs.python312Packages.sagemaker-mlflow
MLFlow plugin for SageMaker
-
nixos-unstable -
- nixpkgs-unstable 0.1.1
pkgs.python313Packages.sagemaker-mlflow
MLFlow plugin for SageMaker
-
nixos-unstable -
- nixpkgs-unstable 0.1.1
Package maintainers
-
@tbenst Tyler Benster <nix@tylerbenster.com>
-
@GaetanLepage Gaetan Lepage <gaetan@glepage.com>