CVE-2026-8147
Authorization Bypass in mlflow/mlflow
In MLflow versions prior to 3.14.0, when running with authentication enabled, the trace API endpoints lack proper authorization validators. This allows any authenticated user to bypass experiment-level authorization controls on all trace operations, including reading, deleting, and modifying traces on experiments they do not have permission to access. The issue arises from the `_before_request` handler, which does not register authorization validators for trace endpoints, resulting in requests proceeding without validation. This vulnerability can expose sensitive data, destroy audit logs, and allow unauthorized modifications.
| CWE | CWE-284 |
| Vendor | mlflow |
| Product | mlflow/mlflow |
| Published | Jul 2, 2026 |
| Last Updated | Jul 2, 2026 |
Get instant alerts for mlflow mlflow/mlflow
Be the first to know when new high vulnerabilities affecting mlflow mlflow/mlflow are published โ delivered to Slack, Telegram or Discord.
CVSS v3 Breakdown
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N