A vulnerability was found in mlflow. It has been declared as critical. Impacted is an unknown function. Executing a manipulation can lead to use of default password.
This vulnerability is tracked as CVE-2026-2635. The attack can be launched remotely. No exploit exists.
Applying a patch is advised to resolve this issue.
