Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
7.5
CVSSv3
CVE-2023-6977
Published: 20/12/2023 Updated: 29/12/2023
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 0
Vulnerability Summary
This vulnerability enables malicious users to read sensitive files on the server.
Subscribe to Mlflow
Vulnerable Product
Search on Vulmon
Subscribe to Product
lfprojects mlflow
References
CWE-29
https://huntr.com/bounties/fe53bf71-3687-4711-90df-c26172880aaf
https://github.com/mlflow/mlflow/commit/4bd7f27c810ba7487d53ed5ef1038fca0f8dc28c
https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started