PyPI: mlflow
CVE-2026-0545
Safety vulnerability ID: SFTY-20260403-85111
Safety legacy ID: pyup.io-93829
Affected versions of the mlflow package are vulnerable to Missing Authentication due to the FastAPI job endpoints mounted under /ajax-api/3.0/jobs/* not enforcing authentication or authorization when the basic-auth app is enabled. When job execution is enabled via MLFLOW_SERVER_ENABLE_JOB_EXECUTION=true and at least one job function is allowlisted, the /ajax-api/3.0/jobs/* routes bypass basic-auth entirely, accepting submit, read, search, and cancel operations from any network client without credentials. An unauthenticated remote attacker can invoke allowlisted jobs, which may yield remote code execution when a job performs privileged actions such as shell execution or filesystem changes, and otherwise enables job spam, Denial of Service, and disclosure of job result data.
Overview
mlflow: FastAPI job endpoints under `/ajax-api/3.0/jobs/*` are not protected by authentication or authorization
Advisory
Affected versions of the mlflow package are vulnerable to Missing Authentication due to the FastAPI job endpoints mounted under /ajax-api/3.0/jobs/* not enforcing authentication or authorization when the basic-auth app is enabled. When job execution is enabled via MLFLOW_SERVER_ENABLE_JOB_EXECUTION=true and at least one job function is allowlisted, the /ajax-api/3.0/jobs/* routes bypass basic-auth entirely, accepting submit, read, search, and cancel operations from any network client without credentials. An unauthenticated remote attacker can invoke allowlisted jobs, which may yield remote code execution when a job performs privileged actions such as shell execution or filesystem changes, and otherwise enables job spam, Denial of Service, and disclosure of job result data.
How to Fix
Mitigation and Workarounds
---
Vulnerable Functions
Functions linked to known vulnerabilities.
References
- https://getsafety.com/vulnerabilities/SFTY-20260403-85111/CVE-2026-0545
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0545
- https://data.safetycli.com/changelogs/mlflow/
- https://github.com/advisories/GHSA-7qhf-v65m-g5f3
- https://pypi.org/project/mlflow
- https://nvd.nist.gov/vuln/detail/CVE-2026-0545
- https://huntr.com/bounties/b2e5b028-9541-4d29-8703-a76f1a3734d8
- https://github.com/advisories/GHSA-7qhf-v65m-g5f3
Verified by Safety
Our Cybersecurity Intelligence Team reviewed this vulnerability. We combine public data with our own research to find issues not yet reported to public sources.
Learn more