CVE Catalog

CVE-2026-8147

HighCVSS 8.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.34%

26th percentile — higher than 26% of all known CVEs

Summary

In MLflow versions prior to 3.14.0, when authentication is enabled, the trace API endpoints lack proper authorization validators. This allows any authenticated user to bypass experiment-level authorization controls on all trace operations, including reading, deleting, and modifying traces on experiments they do not have permission to access. The issue arises from the `_before_request` handler, which does not register authorization validators for trace endpoints, resulting in requests proceeding without validation.

Risk Assessment

The organization is at risk of sensitive data exposure, destruction of audit logs, and unauthorized modifications of experiment data, potentially compromising system integrity and confidentiality.

Recommendation

Immediately upgrade MLflow to version 3.14.0 or later, which includes a fix for this vulnerability. If an upgrade is not possible, temporarily restrict access to the trace API to trusted users only.

Original NVD description (English source)

In MLflow versions prior to 3.14.0, when running with authentication enabled, the trace API endpoints lack proper authorization validators. This allows any authenticated user to bypass experiment-level authorization controls on all trace operations, including reading, deleting, and modifying traces on experiments they do not have permission to access. The issue arises from the `_before_request` handler, which does not register authorization validators for trace endpoints, resulting in requests proceeding without validation. This vulnerability can expose sensitive data, destroy audit logs, and allow unauthorized modifications.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS