PT-2025-12315 · Mlflow · Mlflow

Published

2025-03-20

Updated

2025-04-03

CVE-2025-0453

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions mlflow/mlflow version 2.17.2

Description The /graphql endpoint is vulnerable to a denial of service attack. An attacker can create large batches of queries that repeatedly request all runs from a given experiment, tying up all the workers allocated by MLFlow and rendering the application unable to respond to other requests. This issue is due to uncontrolled resource consumption.

Recommendations For version 2.17.2, consider disabling access to the /graphql endpoint until a patch is available to prevent exploitation. Restricting the number of concurrent queries or implementing rate limiting on the /graphql endpoint can also help mitigate the risk of denial of service attacks.

Exploit

Fix

DoS

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400CWE-410

Related Identifiers

BIT-MLFLOW-2025-0453

CVE-2025-0453

GHSA-49M6-VRR9-2CQM

Affected Products

Mlflow

PT-2025-12315 · Mlflow · Mlflow

CVE-2025-0453

Weakness Enumeration

Related Identifiers

Affected Products

References · 9