Path Traversal: '\..\filename'

CVE-2023-6975

High

9.8/10

Summary

A malicious user could use this issue to get command execution on the vulnerable machine and get access to data and models information. This issue affects mlflow versions prior to 2.9.2.

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: HIGH
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: NONE
Confidentiality Impact: HIGH
Availability Impact: HIGH

CWE-29 - Path Traversal: '\..\filename'

The software uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize '\..\filename' (leading backslash dot dot) sequences that can resolve to a location that is outside of that directory.

References

Advisory
Disclosure
Pull request
Release Note

Advisory Timeline

Published Dec 20, 2023

Path Traversal: '\..\filename'

CVE-2023-6975

Summary

CWE-29 - Path Traversal: '\..\filename'

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS