CVE 9.8 CRITICAL

MLflow Use of Default Password Authentication Bypass Vulnerability_CVE-2026-2635

February 20, 2026 invoker category_cve

9.8 / 10

CRITICAL

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

MLflow Use of Default Password Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of MLflow. Authentication is not required to exploit this vulnerability.

The specific flaw exists within the basic_auth.ini file. The file contains hard-coded default credentials. An attacker can leverage this vulnerability to bypass authentication and execute arbitrary code in the context of the administrator. Was ZDI-CAN-28256.

AI Analysis

Authentication bypass vulnerability in MLflow allowing remote attackers to execute arbitrary code

Basic Information

ID CVE-2026-2635

Source zdi

Published Feb 20, 2026 at 22:25

Affected Product

Vendor MLflow

Product MLflow

Version 3.4.0

Affected Versions MLflow MLflow 3.4.0

CWE Classification

CWE-1393

AI Assessment

AI Score 9.8 / 10

AI Severity Critical

Vendor MLflow

Product MLflow

Version 3.4.0

References

{
    "lastseen": "",
    "description": "MLflow Use of Default Password Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of MLflow. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the basic_auth.ini file. The file contains hard-coded default credentials. An attacker can leverage this vulnerability to bypass authentication and execute arbitrary code in the context of the administrator. Was ZDI-CAN-28256.",
    "published": "2026-02-20T22:25:03.494Z",
    "modified": "2026-02-20T22:25:03.494Z",
    "type": "cve",
    "title": "MLflow Use of Default Password Authentication Bypass Vulnerability",
    "source": "zdi",
    "references": "https://www.zerodayinitiative.com/advisories/ZDI-26-111/\nhttps://github.com/mlflow/mlflow/pull/19260",
    "id": "CVE-2026-2635",
    "bulletinFamily": "",
    "cwe": [
        "CWE-1393"
    ],
    "cvelist": null,
    "sourceData": "MLflow MLflow 3.4.0",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "MLflow",
    "version": "3.4.0",
    "vendor": "MLflow",
    "ai_description": "Authentication bypass vulnerability in MLflow allowing remote attackers to execute arbitrary code",
    "ai_severity": "Critical",
    "ai_vendor": "MLflow",
    "ai_product": "MLflow",
    "ai_version": "3.4.0",
    "ai_score": 9.8
}

💭 Join the Security Discussion ❌ Cancel Reply