CVE-2024-37054 | MLflow 0.9.0 deserialization

Posted by Angelo Barbosa | Jun 4, 2024 | CVE

A vulnerability was found in MLflow 0.9.0. It has been classified as very critical. Affected is an unknown function. The manipulation leads to deserialization.

This vulnerability is traded as CVE-2024-37054. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-37054 | MLflow 0.9.0 deserialization

Related Posts

CVE-2024-34463 | BPL PWS-01BT IND-09-18-599 BLE cleartext transmission

CVE-2024-0897 | Beaver Builder Plugin up to 2.7.4.2 on WordPress cross site scripting

CVE-2024-42337 | CyberArk Identity Management information disclosure

CVE-2024-1767 | Blocksy Plugin up to 2.0.26 on WordPress cross site scripting