CVE-2025-15381

Name of the Vulnerable Software and Affected Versions mlflow/mlflow (affected versions not specified)

Description When the basic-auth application is enabled, tracing and assessment endpoints are not protected by permission validators. This allows any authenticated user, even those with NO PERMISSIONS on an experiment, to read trace information and create assessments for traces they should not have access to. This impacts confidentiality by exposing trace metadata and integrity by allowing unauthorized creation of assessments. The issue affects deployments using mlflow server --app-name=basic-auth. The vulnerable endpoints are tracing and assessment endpoints. The NO PERMISSIONS role is a factor in the exploitation of this issue.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.