CVE-2026-2651
Missing Authorization Validation in mlflow/mlflow
9.0
CRITICAL
CVSS 3.1
描述
A vulnerability in MLflow versions <=3.10.1.dev0 allows unauthorized access to multipart upload (MPU) endpoints when the `--serve-artifacts` mode is enabled. The authorization logic does not enforce resource-level permission checks for `/mlflow-artifacts/mpu/*` endpoints, enabling attackers to overwrite artifacts belonging to other users. This can lead to unauthorized cross-user writes, model supply chain poisoning, and arbitrary code execution when compromised models are loaded. The issue is resolved in version 3.10.0.
如何修補 CVE-2026-2651
要修補 CVE-2026-2651,請將受影響套件升級到下列已修補版本。
- —升級至 3.11.1 或更新版本
CVE-2026-2651 正在被利用嗎?
目前沒有被利用訊號。CVE-2026-2651 既不在 CISA KEV 也沒有最新的 EPSS 分數。
受影響套件(1)
- from 0, < 3.11.1
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | CRITICAL9.0 | CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H |