CVE-2023-6975

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Dec 20, 2023

Updated: Feb 6, 2024

CWE ID 29

Summary

CVE-2023-6975 is a newly disclosed vulnerability that poses a significant threat to security. An attacker can exploit this issue to gain unauthorized command execution on the affected system. Once executed, the attacker may have the ability to access sensitive data and models information, potentially leading to data breaches or unintended system modifications. This vulnerability underscores the importance of promptly applying software patches to mitigate risks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Lfprojects Mlflow

Affected Vendors

LF Projects, LLC

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/t3Toyp
https://www.cve.org/CVERecord?id=CVE-2023-6975
https://nvd.nist.gov/vuln/detail/CVE-2023-6975

Back to Vulnerability Database