Description
A flaw has been found in MLflow up to 3.10.0. This issue affects the function mlflow.data.digest_utils of the file mlflow/data/digest_utils.py of the component Dataset Digest Computation. This manipulation causes use of weak hash. It is possible to launch the attack on the local host. The attack is considered to have high complexity. The exploitability is assessed as difficult. The exploit has been published and may be used. The project was informed of the problem early through a pull request but has not reacted yet.
Published: 2026-06-04
Score: 2 Low
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is found in MLflow’s dataset digest computation module, where a weak hash algorithm is used during digest calculation. Attackers can exploit this weakness to tamper with dataset digests, potentially injecting altered data or bypassing integrity checks. This flaw does not grant direct remote code execution but can result in unauthorized modification or fraudulent content being accepted as valid data.

Affected Systems

MLflow, any deployment using versions up to and including 3.10.0. The fault resides in the mlflow.data.digest_utils component and affects how data sets are hashed for integrity verification.

Risk and Exploitability

The CVSS score of 2 indicates a low overall severity, yet the exploitability is classified as difficult, and an exploit has already been published. Attack execution is considered possible only on the local host; the attack vector appears to be local and requires high complexity. The vulnerability is not listed in the CISA KEV catalog, and no EPSS score is available, suggesting limited current exploitation activity. The risk is therefore moderate, primarily affecting local deployment security and the integrity of stored or processed data.

Generated by OpenCVE AI on June 4, 2026 at 13:23 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade MLflow to a version that removes the weak hash (e.g., any release newer than 3.10.0).
  • If an update is not available, disable or replace the dataset digest computation so that it does not rely on the weak algorithm.
  • Continuously monitor the MLflow project’s advisory channels for a formal fix or further guidance, and apply any subsequent patches without delay.

Generated by OpenCVE AI on June 4, 2026 at 13:23 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 08 Jun 2026 12:15:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

 threat_severity

Low

Thu, 04 Jun 2026 18:30:00 +0000

Type Values Removed Values Added
First Time appeared Lfprojects
Lfprojects mlflow
CPEs cpe:2.3:a:lfprojects:mlflow:*:*:*:*:*:*:*:*
Vendors & Products Lfprojects
Lfprojects mlflow

Thu, 04 Jun 2026 13:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Thu, 04 Jun 2026 12:15:00 +0000

Type Values Removed Values Added
Description A flaw has been found in MLflow up to 3.10.0. This issue affects the function mlflow.data.digest_utils of the file mlflow/data/digest_utils.py of the component Dataset Digest Computation. This manipulation causes use of weak hash. It is possible to launch the attack on the local host. The attack is considered to have high complexity. The exploitability is assessed as difficult. The exploit has been published and may be used. The project was informed of the problem early through a pull request but has not reacted yet.
Title MLflow Dataset Digest Computation digest_utils.py mlflow.data.digest_utils weak hash
First Time appeared Mlflow
Mlflow mlflow
Weaknesses CWE-327
CWE-328
CPEs cpe:2.3:a:mlflow:mlflow:*:*:*:*:*:*:*:*
Vendors & Products Mlflow
Mlflow mlflow
References
Metrics cvssV2_0

{'score': 2.4, 'vector': 'AV:L/AC:H/Au:S/C:N/I:P/A:P/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 3.6, 'vector': 'CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 3.6, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 2, 'vector': 'CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Lfprojects Mlflow
Mlflow Mlflow
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-06-04T12:55:59.415Z

Reserved: 2026-06-04T05:06:53.422Z

Link: CVE-2026-10803

cve-icon Vulnrichment

Updated: 2026-06-04T12:55:36.548Z

cve-icon NVD

Status : Analyzed

Published: 2026-06-04T12:16:24.440

Modified: 2026-06-04T18:24:41.013

Link: CVE-2026-10803

cve-icon Redhat

Severity : Low

Publid Date: 2026-06-04T11:45:10Z

Links: CVE-2026-10803 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-06-04T14:30:15Z

Weaknesses
  • CWE-327

    Use of a Broken or Risky Cryptographic Algorithm

  • CWE-328

    Use of Weak Hash