Insufficient Sanitization in MLflow Leads to XSS and RCE
CVE-2024-27132

9.6CRITICAL

Key Information:

Vendor: MLflow
Status: Mlflow
Vendor: CVE Published:; 23 February 2024

What is CVE-2024-27132?

Insufficient sanitization of template variables in MLflow exposes users to cross-site scripting (XSS) vulnerabilities when executing untrusted recipes in Jupyter Notebooks. Attackers could exploit this weakness to execute arbitrary code on the client side, leading to potential security breaches and unauthorized access. Implementing stringent sanitization measures is crucial for mitigating these risks and ensuring a safe operational environment.

References

https://research.jfrog.com/vulnerabilities/mlflow-untrust...

https://github.com/mlflow/mlflow/pull/10873

CVSS V3.1

Score:

9.6

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 23, 2024