CVE-2023-6018

CRITICAL10.0EPSS 91.3%

Remote Code Execution due to Full Controled File Write in mlflow

發布日:2023/11/16修改日:2024/8/8

也稱為:GHSA-5p3h-7fwh-92rcBIT-mlflow-2023-6018

描述

The mlflow web server includes tools for tracking experiments, packaging code into reproducible runs, and sharing and deploying models. As this vulnerability allows to write / overwrite any file on the file system, it gives a lot of ways to archive code execution (like overwriting `/home/<user>/.bashrc`). A malicious user could use this issue to get command execution on the vulnerable machine and get access to data & models information.

受影響套件(2)

Bitnami/mlflow
PyPI/mlflowfrom 0, < 2.9.2

CVSS 分數

來源	版本	嚴重程度	向量
osv	CVSS 3.1	CRITICAL10.0	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

參考連結(4)

ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2023-6018
PATCHhttps://github.com/mlflow/mlflow
WEBhttps://github.com/mlflow/mlflow/commit/55c72d02380e8db8118595a4fdae7879cb7ac5bd
WEBhttps://huntr.com/bounties/7cf918b5-43f4-48c0-a371-4d963ce69b30