CVE-2025-15036CRITICAL 10.0EPSS p41.3%

CVE-2025-15036CVE-2025-15036

Description

A path traversal vulnerability exists in the `extract_archive_to_dir` function within the `mlflow/pyfunc/dbconnect_artifact_cache.py` file of the mlflow/mlflow repository. This vulnerability, present in versions before v3.7.0, arises due to the lack of validation of tar member paths during extraction. An attacker with control over the tar.gz file can exploit this issue to overwrite arbitrary files or gain elevated privileges, potentially escaping the sandbox directory in multi-tenant or shared cluster environments.

Scoring

CVSS 3.110.0 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
EPSS0.54% probability of exploitation · percentile 41.3% · 2026-06-19T12:03:05Z
Published2026-03-30
Last modified2026-04-28

Underlying weaknesses· 1

CWE-29

References

  1. https://github.com/mlflow/mlflow/commit/3bf6d81ac4d38654c8ff012dbd0c3e9f17e7e346
  2. https://huntr.com/bounties/36c314cf-fd6e-4fb0-b9b0-1b47bcdf0eb0

1

TypeTargetConfidenceTier
WeaknessPath Traversal: '\..\filename'cwe-290%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-15031
CVE
CVE-2026-2033
CVE
CVE-2026-4137
CVE
CVE-2025-15379
CVE
CVE-2025-14287
CVE
CVE-2025-11201
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.