cvelistv5 - cve-2022-0736

Source	URL	Tags
security@huntr.dev	https://github.com/mlflow/mlflow/commit/61984e6843d2e59235d82a580c529920cd8f3711	Patch, Third Party Advisory
security@huntr.dev	https://huntr.dev/bounties/e5384764-c583-4dec-a1d8-4697f4e12f75	Exploit, Patch, Third Party Advisory

Vendor	Product
mlflow	mlflow/mlflow

pysec-2022-28

Vulnerability from pysec

Published

2022-02-23 09:15

Modified

2022-03-02 06:39

Details

Insecure Temporary File in GitHub repository mlflow/mlflow prior to 1.23.1.

Aliases

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "PyPI",
        "name": "mlflow",
        "purl": "pkg:pypi/mlflow"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "61984e6843d2e59235d82a580c529920cd8f3711"
            }
          ],
          "repo": "https://github.com/mlflow/mlflow",
          "type": "GIT"
        },
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "1.23.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "0.0.1",
        "0.1.0",
        "0.2.0",
        "0.2.1",
        "0.3.0",
        "0.4.0",
        "0.4.1",
        "0.4.2",
        "0.5.0",
        "0.5.1",
        "0.5.2",
        "0.6.0",
        "0.7.0",
        "0.8.0",
        "0.8.1",
        "0.8.2",
        "0.9.0",
        "0.9.0.1",
        "0.9.1",
        "1.0.0",
        "1.1.0",
        "1.1.1.dev0",
        "1.10.0",
        "1.11.0",
        "1.12.0",
        "1.12.1",
        "1.13",
        "1.13.1",
        "1.14.0",
        "1.14.1",
        "1.15.0",
        "1.16.0",
        "1.17.0",
        "1.18.0",
        "1.19.0",
        "1.2.0",
        "1.20.0",
        "1.20.1",
        "1.20.2",
        "1.21.0",
        "1.22.0",
        "1.23.0",
        "1.3.0",
        "1.4.0",
        "1.5.0",
        "1.6.0",
        "1.7.0",
        "1.7.1",
        "1.7.2",
        "1.8.0",
        "1.9.0",
        "1.9.1"
      ]
    }
  ],
  "aliases": [
    "CVE-2022-0736",
    "GHSA-vqj2-4v8m-8vrq"
  ],
  "details": "Insecure Temporary File in GitHub repository mlflow/mlflow prior to 1.23.1.",
  "id": "PYSEC-2022-28",
  "modified": "2022-03-02T06:39:30.836439Z",
  "published": "2022-02-23T09:15:00Z",
  "references": [
    {
      "type": "WEB",
      "url": "https://huntr.dev/bounties/e5384764-c583-4dec-a1d8-4697f4e12f75"
    },
    {
      "type": "FIX",
      "url": "https://github.com/mlflow/mlflow/commit/61984e6843d2e59235d82a580c529920cd8f3711"
    },
    {
      "type": "ADVISORY",
      "url": "https://github.com/advisories/GHSA-vqj2-4v8m-8vrq"
    }
  ]
}

gsd-2022-0736

Vulnerability from gsd

Modified

2023-12-13 01:19

Details

Insecure Temporary File in GitHub repository mlflow/mlflow prior to 1.23.1.

Aliases

CVE-2022-0736

Aliases

CVE-2022-0736

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2022-0736",
    "description": "Insecure Temporary File in GitHub repository mlflow/mlflow prior to 1.23.1.",
    "id": "GSD-2022-0736"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2022-0736"
      ],
      "details": "Insecure Temporary File in GitHub repository mlflow/mlflow prior to 1.23.1.",
      "id": "GSD-2022-0736",
      "modified": "2023-12-13T01:19:11.161777Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security@huntr.dev",
        "ID": "CVE-2022-0736",
        "STATE": "PUBLIC",
        "TITLE": "Insecure Temporary File in mlflow/mlflow"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "mlflow/mlflow",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_value": "1.23.1"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "mlflow"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Insecure Temporary File in GitHub repository mlflow/mlflow prior to 1.23.1."
          }
        ]
      },
      "impact": {
        "cvss": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.2,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "NONE",
          "integrityImpact": "LOW",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
          "version": "3.0"
        }
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "CWE-377 Insecure Temporary File"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://huntr.dev/bounties/e5384764-c583-4dec-a1d8-4697f4e12f75",
            "refsource": "CONFIRM",
            "url": "https://huntr.dev/bounties/e5384764-c583-4dec-a1d8-4697f4e12f75"
          },
          {
            "name": "https://github.com/mlflow/mlflow/commit/61984e6843d2e59235d82a580c529920cd8f3711",
            "refsource": "MISC",
            "url": "https://github.com/mlflow/mlflow/commit/61984e6843d2e59235d82a580c529920cd8f3711"
          }
        ]
      },
      "source": {
        "advisory": "e5384764-c583-4dec-a1d8-4697f4e12f75",
        "discovery": "EXTERNAL"
      }
    },
    "gitlab.com": {
      "advisories": [
        {
          "affected_range": "\u003c1.23.1",
          "affected_versions": "All versions before 1.23.1",
          "cwe_ids": [
            "CWE-1035",
            "CWE-937"
          ],
          "date": "2022-02-26",
          "description": "Insecure Temporary File in GitHub repository mlflow/mlflow prior to 1.23.1.",
          "fixed_versions": [
            "1.23.1"
          ],
          "identifier": "CVE-2022-0736",
          "identifiers": [
            "GHSA-vqj2-4v8m-8vrq",
            "CVE-2022-0736"
          ],
          "not_impacted": "All versions starting from 1.23.1",
          "package_slug": "pypi/mlflow",
          "pubdate": "2022-02-24",
          "solution": "Upgrade to version 1.23.1 or above.",
          "title": "Insecure Temporary File in mlflow",
          "urls": [
            "https://nvd.nist.gov/vuln/detail/CVE-2022-0736",
            "https://github.com/mlflow/mlflow/commit/61984e6843d2e59235d82a580c529920cd8f3711",
            "https://huntr.dev/bounties/e5384764-c583-4dec-a1d8-4697f4e12f75",
            "https://github.com/advisories/GHSA-vqj2-4v8m-8vrq"
          ],
          "uuid": "d15d398e-28c5-4cc8-be00-a51516a34263"
        }
      ]
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:lfprojects:mlflow:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "1.23.1",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "security@huntr.dev",
          "ID": "CVE-2022-0736"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Insecure Temporary File in GitHub repository mlflow/mlflow prior to 1.23.1."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://huntr.dev/bounties/e5384764-c583-4dec-a1d8-4697f4e12f75",
              "refsource": "CONFIRM",
              "tags": [
                "Exploit",
                "Patch",
                "Third Party Advisory"
              ],
              "url": "https://huntr.dev/bounties/e5384764-c583-4dec-a1d8-4697f4e12f75"
            },
            {
              "name": "https://github.com/mlflow/mlflow/commit/61984e6843d2e59235d82a580c529920cd8f3711",
              "refsource": "MISC",
              "tags": [
                "Patch",
                "Third Party Advisory"
              ],
              "url": "https://github.com/mlflow/mlflow/commit/61984e6843d2e59235d82a580c529920cd8f3711"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 3.6
        }
      },
      "lastModifiedDate": "2023-06-27T18:13Z",
      "publishedDate": "2022-02-23T09:15Z"
    }
  }
}

ghsa-vqj2-4v8m-8vrq

Vulnerability from github

Published

2022-02-24 00:00

Modified

2022-02-24 21:42

Severity

8.2 (High) - CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

Summary

Insecure Temporary File in mlflow

Details

mlflow prior to 1.23.1 contains an insecure temporary file. The insecure function tempfile.mktemp() is deprecated and mkstemp() should be used instead.

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "ecosystem_specific": {
        "affected_functions": [
          "mlflow.utils.file_utils.make_tarfile",
          "mlflow.projects.docker._create_docker_build_ctx"
        ]
      },
      "package": {
        "ecosystem": "PyPI",
        "name": "mlflow"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "1.23.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2022-0736"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-377",
      "CWE-668"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2022-02-24T21:42:26Z",
    "nvd_published_at": "2022-02-23T09:15:00Z",
    "severity": "HIGH"
  },
  "details": "mlflow prior to 1.23.1 contains an insecure temporary file. The insecure function `tempfile.mktemp()` is deprecated and `mkstemp()` should be used instead.",
  "id": "GHSA-vqj2-4v8m-8vrq",
  "modified": "2022-02-24T21:42:26Z",
  "published": "2022-02-24T00:00:54Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0736"
    },
    {
      "type": "WEB",
      "url": "https://github.com/mlflow/mlflow/commit/61984e6843d2e59235d82a580c529920cd8f3711"
    },
    {
      "type": "PACKAGE",
      "url": "https://github.com/mlflow/mlflow"
    },
    {
      "type": "WEB",
      "url": "https://huntr.dev/bounties/e5384764-c583-4dec-a1d8-4697f4e12f75"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
      "type": "CVSS_V3"
    }
  ],
  "summary": "Insecure Temporary File in mlflow"
}

Action not permitted

cve-2022-0736

Vulnerability from cvelistv5

pysec-2022-28

Vulnerability from pysec

gsd-2022-0736

Vulnerability from gsd

ghsa-vqj2-4v8m-8vrq

Vulnerability from github

Tags