Loading HuntDB...

Vulnerability Intelligence by wss.sh

Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News

More Sources

HackerOne Reports

Bug bounty disclosures

WordPress Vulnerabilities

WordPress plugins & themes

Tools & Data

Trending Insights

Popular vulnerabilities

Advanced Search

Filter & search CVEs

Product Inventory

Software & vendors

Sign In Sign Up

lfprojects

1 Product 19 CVEs

CVE Severity Distribution (All Time)

Critical

2

High

16

Medium

1

Low

0

Timeline Overview

Last 30 Days 0 CVEs

Last 6 Months 0 CVEs

Last Year 1 CVE

Products

View all

mlflow

12 Versions 19 CVEs

Recent CVEs

View all

CVE-2024-27134 HIGH 8 months ago

Excessive directory permissions in MLflow leads to local privilege escalation when using spark_udf. This behavior can be exploited by a local attacke…

Related Security News

CVE-2024-2928: MLflow Local File Inclusion via URI Fragment Manipulation

2025-05-15 15:41 Offsec.com

Read about an LFI vulnerability disclosed in MLflow which allowed unauthenticated remote attackers to read arbitrary files by exploiting URI fragments containing directory traversal sequences. The po…

CVE-2024-2928