MLflow

MLflow is an open-source machine learning platform used for experiment tracking and model management. This high-severity vulnerability (CVSS 7.8) requires local access with no authentication or user interaction needed, and can result in complete compromise of confidentiality, integrity, and availability on affected systems. Security teams should monitor for patch availability from MLflow and assess whether this vulnerability affects their ML infrastructure, particularly in environments where untrusted users have local system access.