CVE-2025-15031Lfprojects · Mlflow
Vulnerability data via NVD (ingested)
A vulnerability in MLflow's pyfunc extraction process allows for arbitrary file writes due to improper handling of tar archive entries. Specifically, the use of `tarfile.extractall` without path validation enables crafted tar.gz files containing `..` or absolute paths to escape the intended extraction directory. This issue affects the latest version of MLflow and poses a high/critical risk in scenarios involving multi-tenant environments or ingestion of untrusted artifacts, as it can lead to arbitrary file overwrites and potential remote code execution.
External references
Search for exposed instances
Shodan + Censys queries derived from NVD's CPE data. The vuln tag catches assets Shodan has explicitly linked to this CVE; the product / banner fingerprints find exposed instances even when the vuln tag was never applied (which is common).
vuln:CVE-2025-15031product:"Lfprojects Mlflow"http.html:"Mlflow"More intel sources (5)
vuln:CVE-2025-15031vulnerabilities.cve_id: CVE-2025-15031CVE-2025-15031CVE-2025-15031"CVE-2025-15031" exploit -site:nvd.nist.gov