2455900 – (CVE-2026-33866) CVE-2026-33866 MLflow: MLflow: Information disclosure via authorization bypass in AJAX endpoint

Bug 2455900 (CVE-2026-33866) - CVE-2026-33866 MLflow: MLflow: Information disclosure via authorization bypass in AJAX endpoint

Summary: CVE-2026-33866 MLflow: MLflow: Information disclosure via authorization bypas...

Keywords:
Status:	NEW
Alias:	CVE-2026-33866
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2026-04-07 13:01 UTC by OSIDB Bzimport
Modified:	2026-06-03 10:21 UTC (History)
CC List:	2 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2026-04-07 13:01:35 UTC

MLflow is vulnerable to an authorization bypass affecting the AJAX endpoint used to download saved model artifacts. Due to missing access‑control validation, a user without permissions to a given experiment can directly query this endpoint and retrieve model artifacts they are not authorized to access.

 
This issue affects MLflow version through 3.10.1

Note You need to log in before you can comment on or make changes to this bug.