1  info:
 2    name: mlflow
 3    cve: CVE-2025-14287
 4    summary: mlflow MLflow has a command injection in mlflow/sagemaker/__init__.py
 5    details: >-
 6      A command injection vulnerability exists in mlflow/mlflow versions before v3.7.0, specifically in the `mlflow/sagemaker/__init__.py`
 7      file at lines 161-167. The vulnerability arises from the direct interpolation of user-supplied container image names into
 8      shell commands without proper sanitization, which are then executed using `os.system()`. This allows attackers to execute
 9      arbitrary commands by supplying malicious input through the `--container` parameter of the CLI. The issue affects environments
10      where MLflow is used, including development setups, CI/CD pipelines, and cloud deployments.
11  
12  
13      [Exploit Maturity: LOW]
14  
15      - 利用成熟度低：暂无明显公开利用
16    cvss: ''
17    severity: HIGH
18    security_advise: Upgrade to mlflow 3.8.0rc0 or later.
19    references:
20    - https://huntr.com/bounties/229cd526-41aa-4819-b6f0-e2d0371c89e3
21    - https://nvd.nist.gov/vuln/detail/CVE-2025-14287
22    - https://github.com/mlflow/mlflow/pull/19277
23    - https://github.com/mlflow/mlflow/commit/8b8792a7034fb33a14b0b31cabcaa9b912d3485f
24    - https://github.com/mlflow/mlflow/releases/tag/v3.8.0rc0
25  rule: version < "3.8.0rc0"
26  references:
27  - https://huntr.com/bounties/229cd526-41aa-4819-b6f0-e2d0371c89e3
28  - https://nvd.nist.gov/vuln/detail/CVE-2025-14287
29  - https://github.com/mlflow/mlflow/pull/19277
30  - https://github.com/mlflow/mlflow/commit/8b8792a7034fb33a14b0b31cabcaa9b912d3485f
31  - https://github.com/mlflow/mlflow/releases/tag/v3.8.0rc0