CVE-2026-0545 | MLflow up to 3.0 FastAPI Job Endpoint missing authentication

Inserito da Angelo Barbosa | Apr 3, 2026 | CVE

A vulnerability, which was classified as critical, was found in MLflow up to 3.0. This vulnerability affects unknown code of the component FastAPI Job Endpoint. The manipulation results in missing authentication.

This vulnerability is reported as CVE-2026-0545. The attack can be launched remotely. No exploit exists.

You should upgrade the affected component.

CVE-2026-0545 | MLflow up to 3.0 FastAPI Job Endpoint missing authentication

Post correlati

CVE-2024-22026 | Ivanti EPMM prior 11.12.0.1/12.0.0.0/12.1.0.0 access control

CVE-2024-43789 | Discourse up to 3.3.0/3.4.0.beta0 Reply resource consumption (GHSA-62cq-cpmc-hvqq)

CVE-2024-39475 | Linux Kernel up to 6.9.4 fbdev savagefb_probe divide by zero

CVE-2024-5343 | robosoft Photo Gallery, Images, Slider in Rbs Image Gallery Plugin rbs_ajax_create_article/rbs_ajax_reset_views cross-site request forgery