In mlflow/mlflow version 2.17.2, the `/graphql` endpoint is vulnerable to a denial of service attack. An attacker can create large batches of …
CVE-2025-0453 – Apache MLFlow GraphQL Denial of Service Vulnerability – CVEFeed.io
In mlflow/mlflow version 2.17.2, the `/graphql` endpoint is vulnerable to a denial of service attack. An attacker can create large batches of …