CVE-2024-27134

unknown

Published 2024-11-25 · Modified 2025-02-03

CVSS v3

—

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2

—

VIR risk

—

Description

Excessive directory permissions in MLflow leads to local privilege escalation when using spark_udf. This behavior can be exploited by a local attacker to gain elevated permissions by using a ToCToU attack. The issue is only relevant when the spark_udf() MLflow API is called.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

Package impact

Ecosystem	Package	Vulnerable	Fixed
PyPI	mlflow	`<2.16.0`	`2.16.0`

References

https://nvd.nist.gov/vuln/detail/CVE-2024-27134
https://github.com/mlflow/mlflow/pull/10874
https://github.com/mlflow/mlflow/commit/0b1d995d66a678153e01ed3040f3f4dfc16a0d6b
https://github.com/mlflow/mlflow

Verify integrity in audit chain (admin only). AS-IS.