CVE-2023-6709
8.8HIGHImproper Neutralization of Special Elements Used in a Template Engine in GitHub repository mlflow/mlflow prior to 2.9.2.
Published: 12/12/2023Updated: 11/21/2024
Description
Improper Neutralization of Special Elements Used in a Template Engine in GitHub repository mlflow/mlflow prior to 2.9.2.
AI AnalysisPowered by AI
Affected Products
lfprojectsmlflow
References
- https://github.com/mlflow/mlflow/commit/432b8ccf27fd3a76df4ba79bb1bec62118a85625Patch
- https://huntr.com/bounties/9e4cc07b-6fff-421b-89bd-9445ef61d34dExploitIssue TrackingMitigationPatchThird Party Advisory
- https://github.com/mlflow/mlflow/commit/432b8ccf27fd3a76df4ba79bb1bec62118a85625Patch
- https://huntr.com/bounties/9e4cc07b-6fff-421b-89bd-9445ef61d34dExploitIssue TrackingMitigationPatchThird Party Advisory