Цены Enterprise

CVE-2023-6709

8.8HIGH

Improper Neutralization of Special Elements Used in a Template Engine in GitHub repository mlflow/mlflow prior to 2.9.2.

Опубликовано: 12/12/2023Обновлено: 11/21/2024

Посмотреть на NVD Посмотреть на MITRE

Описание

Improper Neutralization of Special Elements Used in a Template Engine in GitHub repository mlflow/mlflow prior to 2.9.2.

ИИ-АнализНа базе ИИ

Затронутые продукты

lfprojectsmlflow

Ссылки

https://github.com/mlflow/mlflow/commit/432b8ccf27fd3a76df4ba79bb1bec62118a85625
Patch
https://huntr.com/bounties/9e4cc07b-6fff-421b-89bd-9445ef61d34d
ExploitIssue TrackingMitigationPatchThird Party Advisory
https://github.com/mlflow/mlflow/commit/432b8ccf27fd3a76df4ba79bb1bec62118a85625
Patch
https://huntr.com/bounties/9e4cc07b-6fff-421b-89bd-9445ef61d34d
ExploitIssue TrackingMitigationPatchThird Party Advisory