MLflow Vulnerabilities

pip MLOps

AI Threat Alert tracks 74 known vulnerabilities in MLflow, 18 rated critical — an AI/ML mlops in the pip ecosystem. Each CVE includes CVSS severity, EPSS exploit probability, patch status, and CISO-grade analysis.

Data sources
81
Risk Score
74
Total CVEs
18
Critical
pip
Ecosystem
Jul 2, 2026
Last CVE
31%
Patch Rate
76d
Avg Time to Patch
26,749 stars 5,915 forks 2,012 issues 655 dependents Last push Jun 27, 2026
View on GitHub
OpenSSF Scorecard 5.4/10

Known Vulnerabilities (74 total, page 3 of 3)

Severity CVE ID Summary CVSS Published
HIGH CVE-2024-1594 MLflow: path traversal via URI fragment reads arbitrary files 7.5 Apr 16, 2024 HIGH CVE-2024-1593 MLflow: path traversal via ';' smuggling exposes files 7.5 Apr 16, 2024 HIGH CVE-2024-1560 MLflow: path traversal allows arbitrary directory deletion 8.1 Apr 16, 2024 HIGH CVE-2024-1558 MLflow: path traversal enables arbitrary file read 7.5 Apr 16, 2024 HIGH CVE-2024-1483 MLflow: path traversal exposes arbitrary server files 7.5 Apr 16, 2024 CRITICAL CVE-2024-27133 MLflow: XSS in recipe runner enables Jupyter RCE 9.6 Feb 23, 2024 CRITICAL CVE-2024-27132 MLflow: XSS in recipes enables client-side RCE 9.6 Feb 23, 2024 HIGH CVE-2023-6909 MLflow: path traversal exposes arbitrary files (no auth) 7.5 Dec 18, 2023 HIGH CVE-2023-6831 MLflow: path traversal allows arbitrary file write 8.1 Dec 15, 2023 HIGH CVE-2023-6753 MLflow: path traversal exposes arbitrary file read/write 8.8 Dec 13, 2023 HIGH CVE-2023-6709 MLflow: SSTI enables RCE in ML experiment tracking 8.8 Dec 12, 2023 MEDIUM CVE-2023-6568 MLflow: reflected XSS via Content-Type header injection 6.1 Dec 7, 2023 HIGH CVE-2023-43472 MLflow: unauth REST API leaks sensitive ML data 7.5 Dec 5, 2023 CRITICAL CVE-2023-6014 MLflow: auth bypass allows arbitrary account creation 9.8 Nov 16, 2023 CRITICAL CVE-2023-6018 MLflow: unauth file overwrite enables model poisoning 9.8 Nov 16, 2023 HIGH CVE-2023-6015 MLflow: unauthenticated arbitrary file write via PUT 7.5 Nov 16, 2023 HIGH CVE-2023-4033 MLflow: OS command injection enables local code execution 7.8 Aug 1, 2023 CRITICAL CVE-2023-3765 MLflow: path traversal allows arbitrary file read 10.0 Jul 19, 2023 CRITICAL CVE-2023-2780 MLflow: path traversal allows arbitrary file read/write 9.8 May 17, 2023 HIGH CVE-2023-30172 MLflow: path traversal exposes arbitrary server files 7.5 May 11, 2023 HIGH CVE-2023-2356 MLflow: path traversal allows unauthenticated file read 7.5 Apr 28, 2023 CRITICAL CVE-2023-1177 MLflow: path traversal allows arbitrary file read/write 9.8 Mar 24, 2023 LOW CVE-2023-1176 MLflow: path traversal exposes arbitrary local files 3.3 Mar 24, 2023 HIGH CVE-2022-0736 MLflow: insecure temp file handling causes DoS 7.5 Feb 23, 2022

Showing 51–74 of 74

Frequently asked questions

What is MLflow?

MLflow is an AI/ML mlops tracked by AI Threat Alert for security vulnerabilities in the pip ecosystem.

How many known vulnerabilities does MLflow have?

MLflow has 74 known CVEs, 18 of them critical, tracked from NVD and GitHub Advisory.

Which ecosystem is MLflow distributed in?

MLflow is distributed via the pip ecosystem and categorized as mlops.

Where does the MLflow vulnerability data come from?

Vulnerability data is sourced from NVD and GitHub Advisory, enriched with CVSS, EPSS, exploit signals, and patch status for each CVE.

How do I assess the risk of MLflow?

Review each CVE below — every entry shows CVSS severity, EPSS exploit probability, exploitation signals, and whether a patched version is available.

Monitor MLflow in your stack

Get instant alerts when new vulnerabilities affect MLflow. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring