A directory traversal vulnerability in the /get-artifact API method of the mlflow platform up to v2.0.1 allows malicious users to read arbitrary files on the server via the path parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
lfprojects mlflow |