CVE-2026-3198— Improper Access Control in mlflow/mlflow
Possible ATT&CK Techniques 1AI
T1530 · Data from Cloud StorageAffected Version Matrix 1
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| mlflow | mlflow/mlflow | unspecified≤ latest | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-3198
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Improper Access Control in mlflow/mlflow
Source: NVD (National Vulnerability Database)
Vulnerability Description
MLflow 3.9.0 with basic-auth (`--app-name basic-auth`) fails to enforce authorization checks for multiple Gateway API 'list' endpoints. Specifically, the `BEFORE_REQUEST_HANDLERS` dictionary in `mlflow/server/auth/__init__.py` does not include entries for `ListGatewaySecretInfos`, `ListGatewayEndpoints`, and `ListGatewayModelDefinitions`. This allows any authenticated user, regardless of their assigned permissions, to enumerate all gateway secrets, endpoints, and model definitions. This vulnerability exposes sensitive information, such as API keys, endpoint configurations, and proprietary model definitions, to unauthorized users.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
访问控制不恰当
Source: NVD (National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| mlflow | mlflow/mlflow | unspecified ~ latest | - |
II. Public POCs for CVE-2026-3198
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-3198
请登录查看更多情报信息。
Vendor Advisories for CVE-2026-3198 (1)
IV. Related Vulnerabilities
Same product: mlflow/mlflow
- CVE-2026-2651
Missing Authorization Validation in mlflow/mlflow - CVE-2026-2734
Authorization Bypass in SearchModelVersions in mlflow/mlflow - CVE-2026-2611
Improper Origin Validation in mlflow/mlflow - CVE-2026-4137
Incomplete Fix for CVE-2025-10279: Insecure Temporary Direct - CVE-2026-2652
Authentication Bypass in mlflow/mlflow
Same vendor: mlflow
- CVE-2026-2651
Missing Authorization Validation in mlflow/mlflow - CVE-2026-2734
Authorization Bypass in SearchModelVersions in mlflow/mlflow - CVE-2026-2611
Improper Origin Validation in mlflow/mlflow - CVE-2026-4137
Incomplete Fix for CVE-2025-10279: Insecure Temporary Direct - CVE-2026-2652
Authentication Bypass in mlflow/mlflow
V. Comments for CVE-2026-3198
No comments yet