CVE-2023-2780
Published: 17 May 2023
Summary
CVE-2023-2780 is a critical-severity Path Traversal: '\..\filename' (CWE-29) vulnerability in Lfprojects Mlflow. Its CVSS base score is 9.8 (Critical).
Operationally, ranked in the top 0.6% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
Deeper analysis
The vulnerability is a path traversal flaw (CWE-29) that accepts traversal sequences such as '\..\filename' and affects the open-source MLflow machine-learning platform in all versions prior to 2.3.1. The issue received a CVSS 3.1 base score of 9.8, reflecting network-accessible attack vectors that require no authentication or user interaction.
An unauthenticated remote attacker can supply crafted paths to read or write arbitrary files on the server, resulting in full compromise of confidentiality, integrity, and availability. Because the flaw is exposed through MLflow's network interfaces, any reachable instance is potentially reachable by an external adversary.
The maintainers resolved the issue in commit fae77a525dd908c56d6204a4cef1c1c75b4e9857, which shipped with MLflow 2.3.1; the referenced huntr.dev report confirms the same remediation. Operators should upgrade immediately and verify that no untrusted path inputs reach the affected endpoints.
The associated EPSS score has reached a peak of 0.8777 (current value 0.8614), indicating sustained and substantial exploitation interest since disclosure. As an ML-lifecycle tool, the affected component is commonly deployed in data-science and production environments, increasing the practical impact of successful attacks.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2023-0159
Vulnerability details
Path Traversal: '\..\filename' in GitHub repository mlflow/mlflow prior to 2.3.1.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.