Vulnerabilities > Lfprojects
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-19 | CVE-2023-3765 | Absolute Path Traversal vulnerability in Lfprojects Mlflow Absolute Path Traversal in GitHub repository mlflow/mlflow prior to 2.5.0. | 10.0 |
| 2023-05-17 | CVE-2023-2780 | Path Traversal: '..filename' vulnerability in Lfprojects Mlflow Path Traversal: '\..\filename' in GitHub repository mlflow/mlflow prior to 2.3.1. | 9.8 |
| 2023-05-11 | CVE-2023-30172 | Path Traversal vulnerability in Lfprojects Mlflow A directory traversal vulnerability in the /get-artifact API method of the mlflow platform up to v2.0.1 allows attackers to read arbitrary files on the server via the path parameter. | 7.5 |
| 2023-04-28 | CVE-2023-2356 | Relative Path Traversal vulnerability in Lfprojects Mlflow Relative Path Traversal in GitHub repository mlflow/mlflow prior to 2.3.1. | 7.5 |
| 2023-04-25 | CVE-2023-30549 | Use After Free vulnerability in multiple products Apptainer is an open source container platform for Linux. | 7.8 |
| 2023-03-28 | CVE-2022-46397 | Unspecified vulnerability in Lfprojects Vector Packet Processor FP.io VPP (Vector Packet Processor) 22.10, 22.06, 22.02, 21.10, 21.06, 21.01, 20.09, 20.05, 20.01, 19.08, and 19.04 Generates a Predictable IV with CBC Mode. | 7.5 |
| 2023-03-24 | CVE-2023-1176 | Absolute Path Traversal vulnerability in Lfprojects Mlflow Absolute Path Traversal in GitHub repository mlflow/mlflow prior to 2.2.2. | 3.3 |
| 2023-03-24 | CVE-2023-1177 | Path Traversal: '..filename' vulnerability in Lfprojects Mlflow Path Traversal: '\..\filename' in GitHub repository mlflow/mlflow prior to 2.2.1. | 9.8 |
| 2023-01-26 | CVE-2023-23619 | Code Injection vulnerability in Lfprojects Modelina Modelina is a library for generating data models based on inputs such as AsyncAPI, OpenAPI, or JSON Schema documents. | 8.8 |
| 2022-02-23 | CVE-2022-0736 | Unspecified vulnerability in Lfprojects Mlflow Insecure Temporary File in GitHub repository mlflow/mlflow prior to 1.23.1. | 7.5 |