CVE-2024-37053 | MLflow 1.1.0 deserialization

Posted by Angelo Barbosa | Jun 4, 2024 | CVE

A vulnerability, which was classified as very critical, was found in MLflow 1.1.0. This affects an unknown part. The manipulation leads to deserialization.

This vulnerability is uniquely identified as CVE-2024-37053. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-37053 | MLflow 1.1.0 deserialization

Related Posts

CVE-2024-31477 | Aruba InstantOS/ArubaOS Command Line Interface command injection (ARUBA-PSA-2024-006)

CVE-2024-1331 | Team Members Plugin up to 5.3.1 on WordPress Shortcode Attribute cross site scripting

CVE-2024-32775 | Pavex Embed Google Photos Album Plugin up to 2.1.9 on WordPress server-side request forgery

CVE-2023-5663 | News Announcement Scroll Plugin up to 9.0.0 on WordPress Shortcode sql injection