Known vulnerabilities in MLflow MLflow
3.9.0
3.8.1
3.8.0
2.22.4
2.22.3
3.7.0
3.6.0
3.5.1
3.5.0
3.4.0
2.22.2
3.3.2
3.3.1
3.3.0
3.2.0
3.1.4
3.1.3
3.1.2
3.1.1
3.0.1
3.1.0
3.0.0
2.22.1
2.22.0
2.21.3
2.21.2
2.21.1
2.21.0
2.20.4
2.20.3
2.20.2
2.20.1
2.20.0
2.19.0
2.18.0
2.17.2
2.17.1
2.17.0
2.16.2
2.16.1
2.16.0
2.15.1
2.15.0
2.14.3
2.14.2
2.14.1
2.14.0
2.13.2
2.13.1
2.13.0
2.12.2
2.12.1
2.11.3
2.11.2
2.11.1
2.11.0
2.10.2
2.10.1
2.10.0
2.9.2
2.9.1
2.9.0
2.8.1
2.8.0
2.7.1
2.7.0
2.6.0
2.5.0
2.4.2
2.4.1
2.4.0
2.3.2
2.3.1
2.3.0
2.2.2
2.2.1
2.2.0
2.1.1
2.1.0
2.0.1
2.0.0
1.30.0
1.29.0
1.28.0
1.27.0
1.26.1
1.26.0
1.25.1
1.25.0
1.24.0
1.23.1
1.23.0
1.22.0
1.21.0
1.20.2
1.20.1
1.20.0
1.19.0
1.18.0
1.17.0
1.16.0
1.15.0
1.14.1
1.14.0
1.13.1
1.13.0
1.12.1
1.12.0
1.11.0
1.10.0
1.9.1
1.9.0
1.8.0
1.7.2
1.7.1
1.7.0
1.6.0
1.5.0
1.4.0
1.3.0
1.2.0
1.1.0
1.0.0
0.9.1
0.9.0
0.8.2
0.8.1
0.8.0
0.7.0
0.7
0.6.0
0.5.2
0.5.1
0.5.0
0.4.2
0.4.1
0.4.0
0.3.0
0.2.1
0.2.0
Security bulletins (12)
| Secuity bulletin | Severity | Status | Published |
|---|---|---|---|
| SB2026022013: Use of default credentials in MLflow | High | 20.02.2026 | |
| SB2026021707: Path traversal in MLflow | High | 17.02.2026 | |
| SB2025100624: Path traversal in MLflow | High | 06.10.2025 | |
| SB2025100623: Weak password requirements in MLflow | High | 06.10.2025 | |
| SB2023120640: Information disclosure in MLFlow | Low | 06.12.2023 | |
| SB2023120639: OS command injection in MLflow | Low | 06.12.2023 | |
| SB2023120637: Path traversal in MLflow on Windows | High | 06.12.2023 | |
| SB2023051160: Path traversal in MLflow | Medium | 11.05.2023 | |
| SB2023042859: Path traversal in MLflow | High | 28.04.2023 | |
| SB2023032440: Path traversal in MLflow | High | 24.03.2023 | |
| SB2023032441: Path traversal in MLflow | Medium | 24.03.2023 | |
| SB2022022322: Local denial of service in MLflow | Low | 23.02.2022 |