Miggo Logo
Miggo Vulnerability Database
CVE-2023-2780

CVE-2023-2780: mlflow Path Traversal vulnerability

9.8

CVSS Score
3.0

Basic Information

CVE ID
CVE-2023-2780
GHSA ID
GHSA-wjq3-7jxx-whj9
EPSS Score
0.99344%
CWE
CWE-29
Published
5/17/2023
Updated
9/24/2024
KEV Status
No
Technology
TechnologyPython

Technical Details

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Package NameEcosystemVulnerable VersionsFirst Patched Version
mlflowpip< 2.3.02.3.0

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The core vulnerability stems from two key functions: 1) _validate_source in handlers.py lacked proper file URI validation and path containment checks, as shown by the patch adding MLFLOW_ALLOW_FILE_URI_AS_MODEL_VERSION_SOURCE checks. 2) is_local_uri in uri.py had incomplete hostname validation that allowed bypasses via 127.0.0.1/localhost URIs, as evidenced by the patch adding explicit hostname checks. The commit diff shows these functions were modified to add security controls, and the CVE description explicitly references path traversal via file URIs bypassing previous fixes.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

ml*low prior to *.*.* is vuln*r**l* to p*t* tr*v*rs*l *u* to * *yp*ss o* t** *ix *or *V*-****-****.

Reasoning

T** *or* vuln*r**ility st*ms *rom two k*y *un*tions: *) _v*li**t*_sour** in **n*l*rs.py l**k** prop*r *il* URI v*li**tion *n* p*t* *ont*inm*nt ****ks, *s s*own *y t** p*t** ***in* ML*LOW_*LLOW_*IL*_URI_*S_MO**L_V*RSION_SOUR** ****ks. *) is_lo**l_uri
CVE-2023-2780: mlflow Path Traversal Bypass | Miggo