Hacking AI: System and Cloud Takeover via MLflow Exploit

Mar 24, 2023 • Dan McInerney • 8 min read

AI ZeroDay• MLflow• Security Alert• CVE-2023-1177• Hacking AI

One of the most popular tools in an ML system is MLflow (with over 13 million monthly downloads and increasing) that is used for managing end-to-end machine learning lifecycle.

Protect AI t ested the security of MLflow and found a combined Local File Inclu sion/Remote File Inclusion vulnerability which can lead to a complete system or cloud provider takeover. Organizations running an MLflow server are urged to update to the latest release immediately.In this blog, we explore the impact of this vulnerability, how to detect it, and our process for discovering these critical impacts. If you are running MLflow, please use our free tool provided in this blog and begin patching your systems immediately. Patching your systems may be a challenge using your traditional tools, since many automated patch management systems do not enumerate or identify MLflow, and if they do, may not perform version checks. 

Leave a Comment