Description

A vulnerability in MLflow's pyfunc extraction process allows for arbitrary file writes due to improper handling of tar archive entries. Specifically, the use of `tarfile.extractall` without path validation enables crafted tar.gz files containing `..` or absolute paths to escape the intended extraction directory. This issue affects the latest version of MLflow and poses a high/critical risk in scenarios involving multi-tenant environments or ingestion of untrusted artifacts, as it can lead to arbitrary file overwrites and potential remote code execution.

INFO

Published Date :

2026-03-18T22:06:47.300Z

Last Modified :

2026-03-19T13:52:40.477Z

Source :

@huntr_ai
AFFECTED PRODUCTS

The following products are affected by CVE-2025-15031 vulnerability.

Vendors Products
Lfprojects
  • Mlflow
Mlflow
  • Mlflow/mlflow
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-15031.

URL Resource
https://huntr.com/bounties/09856f77-f968-446f-a930-657d126efe4e cve-icon cve-icon cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-15031 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-15031 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact
Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact