Description
A vulnerability has been found in MLflow up to 4666cffc7912ea606d592fc38d6a75e2935f65e7. The impacted element is an unknown function of the component Experiment-scoped Label Schema CRUD API. Such manipulation leads to missing authorization. It is possible to launch the attack remotely. A high complexity level is associated with this attack. The exploitability is regarded as difficult. The exploit has been disclosed to the public and may be used. A reply to the GitHub issue explains, that "[t]he labeling schema PR has not been merged yet. The auth handlers will be added before the release."
Published: 2026-06-28
Score: 2.3 Low
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

MLflow impacted the Experiment‑scoped Label Schema CRUD API, where a missing authorization check allows an attacker to manipulate label schema definitions remotely. The vulnerability is triggered by calling an undocumented function, and exploitation requires a high level of complexity, making it difficult to execute. Nonetheless, the attack can be launched from outside the host, and the vulnerability has been disclosed publicly.

Affected Systems

The affected product is MLflow, a machine‑learning platform. The vulnerability exists in all releases up to commit 4666cffc7912ea606d592fc38d6a75e2935f65e7; no specific product versions are listed in the CNA data.

Risk and Exploitability

The CVSS score is 2.3, reflecting low overall severity. EPSS is not available, and the vulnerability is not included in CISA’s KEV catalog. The remote attack vector and high complexity suggest that exploitation is unlikely but not impossible; potential impact is limited to unauthorized creation, modification, or deletion of label schemas used in experiments.

Generated by OpenCVE AI on June 28, 2026 at 10:19 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Monitor MLflow for official patch releases and apply the fix as soon as it is available.
  • If an update is not immediately available, restrict network access to the Experiment‑scoped Label Schema CRUD API endpoints using firewall or ACLs to limit exposure.
  • Ensure that only authenticated, authorized users can invoke MLflow’s API endpoints, enforcing proper authentication mechanisms such as OAuth or token‑based auth to mitigate unauthorized access.

Generated by OpenCVE AI on June 28, 2026 at 10:19 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Sun, 28 Jun 2026 09:00:00 +0000

Type Values Removed Values Added
Description A vulnerability has been found in MLflow up to 4666cffc7912ea606d592fc38d6a75e2935f65e7. The impacted element is an unknown function of the component Experiment-scoped Label Schema CRUD API. Such manipulation leads to missing authorization. It is possible to launch the attack remotely. A high complexity level is associated with this attack. The exploitability is regarded as difficult. The exploit has been disclosed to the public and may be used. A reply to the GitHub issue explains, that "[t]he labeling schema PR has not been merged yet. The auth handlers will be added before the release."
Title MLflow Experiment-scoped Label Schema CRUD API authorization
First Time appeared Mlflow
Mlflow mlflow
Weaknesses CWE-862
CWE-863
CPEs cpe:2.3:a:mlflow:mlflow:*:*:*:*:*:*:*:*
Vendors & Products Mlflow
Mlflow mlflow
References
Metrics cvssV2_0

{'score': 4.6, 'vector': 'AV:N/AC:H/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:C'}

cvssV3_0

{'score': 5, 'vector': 'CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:C'}

cvssV3_1

{'score': 5, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:C'}

cvssV4_0

{'score': 2.3, 'vector': 'CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Mlflow Mlflow
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-06-28T08:30:09.086Z

Reserved: 2026-06-27T15:45:07.800Z

Link: CVE-2026-13484

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-28T10:30:05Z

Weaknesses