PyPI: mlflow

CVE-2025-10279

Safety vulnerability ID: SFTY-20260202-22877

Safety legacy ID: pyup.io-85679

Affected versions of the mlflow package are vulnerable to Creation of Temporary File in Directory with Insecure Permissions due to the creation of a temporary directory with world-writable permissions. The mlflow/utils/file_utils.py get_or_create_tmp_dir() helper creates a directory via tempfile.mkdtemp() and then changes its mode to 0o777, which mlflow uses as the temporary working location for creating Python virtual environments and enables a race condition where files in that environment can be replaced.

PythonPyPINVDNVDGitHubGHSA
Created at: Apr 14, 2026Updated at: Apr 14, 2026

Overview

mlflow Creates of Temporary File in Directory with Insecure Permissions

Advisory

Affected versions of the mlflow package are vulnerable to Creation of Temporary File in Directory with Insecure Permissions due to the creation of a temporary directory with world-writable permissions. The mlflow/utils/file_utils.py get_or_create_tmp_dir() helper creates a directory via tempfile.mkdtemp() and then changes its mode to 0o777, which mlflow uses as the temporary working location for creating Python virtual environments and enables a race condition where files in that environment can be replaced.

Affected Package

Affecting mlflow package, versions
<3.4.0rc0

Also affects

---

How to Fix

Upgrade
mlflow
to
3.4.0rc0
or higher.

Mitigation and Workarounds

---

Vulnerable Functions

Functions linked to known vulnerabilities.

Vulnerable function data is available for Enterprise customers

Book a call with us to see Safety in action.

References

Safety

Verified by Safety

Our Cybersecurity Intelligence Team reviewed this vulnerability. We combine public data with our own research to find issues not yet reported to public sources.

Learn more