What is the CVSS score of CVE-2026-2635?

CVE-2026-2635 has a CVSS 3.0 base score of 9.8 (Critical). CVSS vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 1.4%.

Which versions of AI / ML are affected by CVE-2026-2635?

CVE-2026-2635 is a critical authentication bypass vulnerability in MLflow that allows remote attackers to gain unauthorized access to affected systems without valid credentials.. A patch is available.

How to fix or mitigate CVE-2026-2635?

Within 24 hours: Identify all MLflow installations in your environment and isolate them from untrusted networks; disable remote access where possible and enable detailed access logging. Within 7 days: Implement network segmentation to restrict MLflow access to authenticated internal users only; deploy WAF rules to block exploitation attempts; conduct forensic review of access logs for signs of compromise. Within 30 days: Monitor vendor security advisories for patch availability; evaluate alternative ML platforms if patch timelines are unacceptable; complete full security audit of all MLflow-managed models and data.

AI / ML CVE-2026-2635

CRITICAL

Use of Default Password (CWE-1393)

2026-02-20 zdi-disclosures@trendmicro.com

GHSA-gq3w-7jj3-x7gr

Authentication Bypass AI / ML Mlflow Red Hat

9.8

CVSS 3.0 · NVD

Severity by source

NVD PRIMARY

9.8 CRITICAL

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Red Hat

7.3 HIGH

qualitative

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Patch released

Mar 31, 2026 - 21:13 nvd

Patch available

Analysis Generated

Mar 12, 2026 - 22:04 vuln.today

CVE Published

Feb 20, 2026 - 23:16 nvd

CRITICAL 9.8

DescriptionCVE.org

MLflow Use of Default Password Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of MLflow. Authentication is not required to exploit this vulnerability.

The specific flaw exists within the basic_auth.ini file. The file contains hard-coded default credentials. An attacker can leverage this vulnerability to bypass authentication and execute arbitrary code in the context of the administrator. Was ZDI-CAN-28256.

AnalysisAI

Default password auth bypass in MLflow ML platform. EPSS 1.4%.

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Access MLflow instance

Exploit

Read basic_auth.ini default credentials

Execution

Authenticate as administrator

Impact

Execute arbitrary code

Access

Access MLflow instance

Exploit

Read basic_auth.ini default credentials

Execution

Authenticate as administrator

Impact

Execute arbitrary code

Vulnerability AssessmentAI

Exploitation	MLflow installation with basic_auth.ini file containing hard-coded default credentials and authentication enabled. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment	CVSS 9.8, EPSS 1.4%. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	Login with default credentials to access ML models and training data.
Remediation	Change default credentials. Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Identify all MLflow installations in your environment and isolate them from untrusted networks; disable remote access where possible and enable detailed access logging. …

Threat intelligence, references, and detailed analysis are available after sign-in.

Vendor StatusVendor

CVE-2026-2635 vulnerability details – vuln.today

Back

AI / ML CVE-2026-2635

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Unlock full vulnerability intelligence

Attack ChainAIDerived

Vulnerability AssessmentAI

Recommended ActionAI

Vendor StatusVendor

Share

External POC / Exploit Code