CVE-2025-15036 CRITICAL

CVE-2025-15036: Path Traversal Vulnerability in mlflow/mlflow

Vendor Mlflow
Product mlflow/mlflow
Weakness CWE-29
Published March 30, 2026
Last update June 30, 2026

CVSS base score

9.6/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality High
Integrity High

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

What the vulnerability does

01Description

A path traversal vulnerability exists in the `extract_archive_to_dir` function within the `mlflow/pyfunc/dbconnect_artifact_cache.py` file of the mlflow/mlflow repository. This vulnerability, present in versions before v3.7.0, arises due to the lack of validation of tar member paths during extraction. An attacker with control over the tar.gz file can exploit this issue to overwrite arbitrary files or gain elevated privileges, potentially escaping the sandbox directory in multi-tenant or shared cluster environments.

Key dates

02Disclosure timeline

March 30, 2026 CVE published
June 30, 2026 Record updated