CVE-2024-1560

Advisory

A path traversal vulnerability exists in the mlflow/mlflow repository, specifically within the artifact deletion functionality. Attackers can bypass path validation by exploiting the double decoding process in the `_delete_artifact_mlflow_artifacts` handler and `local_file_uri_to_path` function, allowing for the deletion of arbitrary directories on the server's filesystem. This vulnerability is due to an extra unquote operation in the `delete_artifacts` function of `local_artifact_repo.py`, which fails to sanitize user-supplied paths properly. The issue is present on affected versions, despite attempts to fix a similar issue in CVE-2023-6831.

Affected package

Affected versions

Fixed versions

Vulnerability changelog

This vulnerability has no description

Resources

• https://github.com/mlflow/mlflow/commit/d8edaf0bcdb7c876b69b6cda1bd9ceb0247cf007
• https://github.com/mlflow/mlflow/blob/b929a3e727dc48a1eb19b7e954b7897ac09ad3ec/mlflow/store/artifact/local_artifact_repo.py#L108
• https://github.com/advisories/GHSA-5mvj-wmgj-7q8c
• https://huntr.com/bounties/4a34259c-3c8f-4872-b178-f27fbc876b98
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1560