CVE-2023-6909 | mlflow up to 2.9.1 path traversal

Posted by Angelo Barbosa | Dec 18, 2023 | CVE

A vulnerability, which was classified as critical, has been found in mlflow up to 2.9.1. This issue affects some unknown processing. The manipulation leads to path traversal: ‘..filename’.

The identification of this vulnerability is CVE-2023-6909. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-6909 | mlflow up to 2.9.1 path traversal

Related Posts

CVE-2024-7644 | SourceCodester Leads Manager Tool 1.0 Add Leads /endpoint/add-leads.php leads_name/phone_number cross site scripting

CVE-2024-29929 | WC Lovers WCFM Plugin up to 6.7.8 on WordPress cross site scripting

CVE-2024-28275 | Puwell Cloud Tech 360Eyes Pro 3.9.5.16(3090516) cleartext transmission

CVE-2023-7245 | OpenVPN Connect Node.js Framework ELECTRON_RUN_AS_NODE neutralization of directives