{"id":"CVE-2024-1483","details":"A path traversal vulnerability exists in mlflow/mlflow version 2.9.2, allowing attackers to access arbitrary files on the server. By crafting a series of HTTP POST requests with specially crafted 'artifact_location' and 'source' parameters, using a local URI with '#' instead of '?', an attacker can traverse the server's directory structure. The issue occurs due to insufficient validation of user-supplied input in the server's handlers.","aliases":["BIT-mlflow-2024-1483","GHSA-f82r-jj5r-6g97"],"modified":"2026-04-12T08:23:28.689144Z","published":"2024-04-16T00:15:08.353Z","references":[{"type":"REPORT","url":"https://huntr.com/bounties/52a3855d-93ff-4460-ac24-9c7e4334198d"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/mlflow/mlflow","events":[{"introduced":"0"},{"fixed":"328242e01b766129396415be219cb96127097501"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"2.12.1"}]}}],"versions":["1.0.0","v0.2.0","v0.2.1","v0.3.0","v0.4.0","v0.4.1","v0.4.2","v0.5.0","v0.6.0","v0.7","v0.8.0","v0.8.1","v1.7.0","v2.2.0"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-1483.json","vanir_signatures":[{"source":"https://github.com/mlflow/mlflow/commit/328242e01b766129396415be219cb96127097501","signature_version":"v1","id":"CVE-2024-1483-0490fec7","deprecated":false,"target":{"file":"mlflow/java/scoring/src/main/java/org/mlflow/sagemaker/ScoringServer.java"},"digest":{"threshold":0.9,"line_hashes":["331374387258698623515503197375262902471","56531494967603305558894176301696978897","156845208350900572074037141806451871031","236113965666297154310270274411699188635"]},"signature_type":"Line"},{"source":"https://github.com/mlflow/mlflow/commit/328242e01b766129396415be219cb96127097501","signature_version":"v1","id":"CVE-2024-1483-54219b73","deprecated":false,"target":{"file":"mlflow/java/scoring/src/main/java/org/mlflow/sagemaker/ScoringServer.java","function":"doGet"},"digest":{"length":189,"function_hash":"103832320670295227953645632588587077659"},"signature_type":"Function"},{"source":"https://github.com/mlflow/mlflow/commit/328242e01b766129396415be219cb96127097501","signature_version":"v1","id":"CVE-2024-1483-9f1fee19","deprecated":false,"target":{"file":"mlflow/java/scoring/src/test/java/org/mlflow/ScoringServerTest.java","function":"testScoringServerWithValidPredictorRespondsToVersionCorrectly"},"digest":{"length":483,"function_hash":"248178710733966095301624193790593745960"},"signature_type":"Function"},{"source":"https://github.com/mlflow/mlflow/commit/328242e01b766129396415be219cb96127097501","signature_version":"v1","id":"CVE-2024-1483-d79dc76d","deprecated":false,"target":{"file":"mlflow/java/scoring/src/test/java/org/mlflow/ScoringServerTest.java"},"digest":{"threshold":0.9,"line_hashes":["227586388277291964245723347465144503129","214612006548484888068671228559130409821","141702509437346544668394886097631250819","44304877576058785675745254216915397335"]},"signature_type":"Line"}],"vanir_signatures_modified":"2026-04-12T08:23:28Z"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}]}