MLflow

MLflow is an open-source machine learning platform used for experiment tracking and model management. This high-severity vulnerability (CVSS 8.2) can be exploited remotely without authentication or user interaction, potentially allowing attackers to access sensitive data and make limited system modifications, though availability is not impacted. Security teams should monitor for patches from MLflow and consider restricting network access to MLflow instances until updates are available, particularly in environments handling sensitive model data or training information.