Directory Traversal Vulnerability in MLflow Tracking Server
CVE-2025-11201

8.1HIGH

Key Information:

Vendor: Mlflow
Status: Mlflow
Vendor: CVE Published:; 29 October 2025

What is CVE-2025-11201?

A vulnerability exists in MLflow Tracking Server that allows remote attackers to exploit improper validation in model file paths. This oversight can lead to directory traversal attacks, enabling malicious users to execute arbitrary code within the context of the service account. Importantly, this vulnerability can be exploited without authentication, elevating the risk to affected installations. Administrators should take immediate steps to apply the necessary security patch to protect their systems from potential exploits.

Affected Version(s)

MLflow 2.21.3

References

https://www.zerodayinitiative.com/advisories/ZDI-25-931/

x_research-advisory

https://github.com/B-Step62/mlflow/commit/2e02bc7bb70df24...

vendor-advisory

CVSS V3.0

Score:

8.1

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 29, 2025
Vulnerability Reserved
Sep 30, 2025

JSON

Mlflow

What is CVE-2025-11201?

Affected Version(s)

References

CVSS V3.0

Timeline