MLFlow bug: LFI -> Get SSH priv key -> SSH -> Profit
---
RT @ProtectAICorp
Protect AI discovers 2 critical CVEs in MLflow. MLflow is a popular OSS used in ML systems with >13M downloads per month. Learn more to see how hackers could take complete system control, and more -> https://bit.ly/3LI5Nso #AIØD #protectai #mlsecops #AIZeroDay
https://twitter.com/ProtectAICorp/status/1639235617510014978