CVE-2023-6709

CVSS V2 None CVSS V3 None
Description
Improper Neutralization of Special Elements Used in a Template Engine in GitHub repository mlflow/mlflow prior to 2.9.2.
Overview
  • CVE ID
  • CVE-2023-6709
  • Assigner
  • @huntr_ai
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2023-12-12T04:05:45.542Z
  • Last Modified Date
  • 2023-12-12T04:05:45.542Z
Weakness Enumerations
CWE URL
CWE-1336 http://cwe.mitre.org/data/definitions/1336.html
References
Reference URL Reference Tags
https://huntr.com/bounties/9e4cc07b-6fff-421b-89bd-9445ef61d34d
https://github.com/mlflow/mlflow/commit/432b8ccf27fd3a76df4ba79bb1bec62118a85625
Sources
Source Name Source URL
NIST https://nvd.nist.gov/vuln/detail/CVE-2023-6709
MITRE https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6709
History
Created Old Value New Value Data Type Notes
2024-06-25 06:48:08 Added to TrackCVE