CVE-2023-6709
8.8HIGHImproper Neutralization of Special Elements Used in a Template Engine in GitHub repository mlflow/mlflow prior to 2.9.2.
Publicado: 12/12/2023Actualizado: 11/21/2024
Descripción
Improper Neutralization of Special Elements Used in a Template Engine in GitHub repository mlflow/mlflow prior to 2.9.2.
Análisis IAImpulsado por IA
Productos Afectados
lfprojectsmlflow
Referencias
- https://github.com/mlflow/mlflow/commit/432b8ccf27fd3a76df4ba79bb1bec62118a85625Patch
- https://huntr.com/bounties/9e4cc07b-6fff-421b-89bd-9445ef61d34dExploitIssue TrackingMitigationPatchThird Party Advisory
- https://github.com/mlflow/mlflow/commit/432b8ccf27fd3a76df4ba79bb1bec62118a85625Patch
- https://huntr.com/bounties/9e4cc07b-6fff-421b-89bd-9445ef61d34dExploitIssue TrackingMitigationPatchThird Party Advisory