AI PRP: Mlflow CVE-2024-0520 Remote Code Execution

[owensullivan23]

• Identifier of the vulnerability: CVE-2024-0520
• Affected software: Mlflow
• Type of vulnerability: Remote Code Execution
• • Requires authentication: No
• Language you would use for writing the plugin: Templated plugins
• Resources:
  • https://huntr.com/bounties/93e470d7-b6f0-409b-af63-49d3e2a26dbc

[github-actions]

Welcome to the Tsunami patch reward program!

Your issue has been added to our triage queue and will reviewed
shortly. The panel usually takes a decision once per week, so it
can take up to a week before you hear back from us.

Please, do not start the work until the panel has reached a
decision. Although we always welcome contributions, unapproved
work is not eligible for a reward.

~The Tsunami PRP team

[github-actions]

This message is addressed to the Tsunami panel.

Contributor stats

• The contributor has 0 issues tagged as main;
• The contributor has 0 issues tagged as queue.

Useful links

• All open issues from this contributor
• All open PRs from this contributor