MLflow Vulnerability: XSS and RCE in Jupyter Notebook
CVE-2024-27133

9.6CRITICAL

Key Information:

Vendor: MLflow
Status: Mlflow
Vendor: CVE Published:; 23 February 2024

What is CVE-2024-27133?

A lack of sufficient sanitization in MLflow allows for Cross-Site Scripting (XSS) vulnerabilities when executing recipes that utilize untrusted datasets. This issue can lead to client-side Remote Code Execution (RCE) in Jupyter Notebook environments, as the dataset table fields are not properly sanitized. Attackers can exploit this flaw to inject malicious scripts, potentially taking control of user sessions or executing unauthorized commands.

References

https://research.jfrog.com/vulnerabilities/mlflow-untrust...

https://github.com/mlflow/mlflow/pull/10893

CVSS V3.1

Score:

9.6

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 23, 2024