CVE-2025-15031

Name of the Vulnerable Software and Affected Versions MLflow (affected versions not specified)

Description A flaw exists in the pyfunc extraction process within MLflow that can allow for arbitrary file writes. This occurs because of inadequate handling of entries within tar archives, specifically when using the tarfile.extractall function without proper path validation. Crafted tar.gz files containing '..' or absolute paths can bypass the intended extraction directory. This poses a high risk in multi-tenant environments or when processing untrusted artifacts, potentially leading to arbitrary file overwrites and remote code execution. The tarfile.extractall function is used without validating the paths within the archive. The vulnerable parameter is the input tar archive file.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.