CVE-2023-6976

CVSS V2 None CVSS V3 None
Description
This vulnerability is capable of writing arbitrary files into arbitrary locations on the remote filesystem in the context of the server process.
Overview
  • CVE ID
  • CVE-2023-6976
  • Assigner
  • @huntr_ai
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2023-12-20T05:30:08.540Z
  • Last Modified Date
  • 2023-12-20T05:30:08.540Z
Weakness Enumerations
CWE URL
CWE-434 http://cwe.mitre.org/data/definitions/434.html
References
Reference URL Reference Tags
https://huntr.com/bounties/2408a52b-f05b-4cac-9765-4f74bac3f20f
https://github.com/mlflow/mlflow/commit/5044878da0c1851ccfdd5c0a867157ed9a502fbc
Sources
Source Name Source URL
NIST https://nvd.nist.gov/vuln/detail/CVE-2023-6976
MITRE https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6976
History
Created Old Value New Value Data Type Notes
2024-06-25 06:04:57 Added to TrackCVE