CVE-2026-33866 MEDIUM

CVE-2026-33866: Authorization Bypass in MLflow AJAX Endpoint

Vendor Mlflow
Product Mlflow
Weakness CWE-862 · Missing authorization
Published April 7, 2026
Last update April 14, 2026

CVSS base score

5.3/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

What the vulnerability does

01Description

MLflow is vulnerable to an authorization bypass affecting the AJAX endpoint used to download saved model artifacts. Due to missing access‑control validation, a user without permissions to a given experiment can directly query this endpoint and retrieve model artifacts they are not authorized to access. This issue affects MLflow version through 3.10.1

Key dates

02Disclosure timeline

April 7, 2026 CVE published
April 14, 2026 Record updated