CVE-2024-2928

HIGH NUCLEI

MLflow < 2.11.3 - Path Traversal

Title source: nuclei

Exploitation Summary

EIP tracks 2 public exploits for CVE-2024-2928. PoCs published by nuridincersaygili, rain321654. A Nuclei detection template is also available.

AI-analyzed exploit summary This exploit leverages a path traversal vulnerability in MLflow's API endpoints to read arbitrary files on the server. It chains multiple API requests to manipulate artifact locations and retrieve file contents.

Description

A Local File Inclusion (LFI) vulnerability was identified in mlflow/mlflow, specifically in version 2.9.2, which was fixed in version 2.11.3. This vulnerability arises from the application's failure to properly validate URI fragments for directory traversal sequences such as '../'. An attacker can exploit this flaw by manipulating the fragment part of the URI to read arbitrary files on the local file system, including sensitive files like '/etc/passwd'. The vulnerability is a bypass to a previous patch that only addressed similar manipulation within the URI's query string, highlighting the need for comprehensive validation of all parts of a URI to prevent LFI attacks.

Exploits (2)

nomisec WORKING POC 3 stars

by nuridincersaygili · poc

https://github.com/nuridincersaygili/CVE-2024-2928

View Code ZIP pw:eip

This exploit leverages a path traversal vulnerability in MLflow's API endpoints to read arbitrary files on the server. It chains multiple API requests to manipulate artifact locations and retrieve file contents.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: MLflow versions 2.9.2 and below (fixed in 2.11.3)

No auth needed

Prerequisites: Network access to the MLflow server · Knowledge of the target file path

MITRE ATT&CK

T1005 - Data from Local System T1083 - File and Directory Discovery

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec WRITEUP 1 stars

by rain321654 · poc

https://github.com/rain321654/sjtu_CVE-2024-2928

View Code ZIP pw:eip

This repository contains a report for CVE-2024-2928 but lacks exploit code or technical details. It appears to be a placeholder or documentation-only repository.

Classification

Writeup 90%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: unknown

No auth needed

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

MLflow < 2.11.3 - Path Traversal

HIGHVERIFIEDby jyjyjy25,gy741,oriing,ANseunghyeon,woo4826

Shodan: http.title:"mlflow"

FOFA: title="mlflow" || app="mlflow"

References (2)

Core 2

Core References

Patch

https://github.com/mlflow/mlflow/commit/96f0b573a73d8eedd6735a2ce26e08859527be07

View Patch ZIP pw:eip

Exploit, Issue Tracking, Patch, Third Party Advisory

https://huntr.com/bounties/19bf02d7-6393-4a95-b9d0-d6d4d2d8c298

Scores

CVSS v3 7.5

EPSS 0.9116

EPSS Percentile 99.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-29 CWE-22

Status published

Products (2)

lfprojects/mlflow < 2.11.3

pypi/mlflow 0 - 2.11.3PyPI

Published Jun 06, 2024

Tracked Since Feb 18, 2026