CVE-2025-14287: A command injection vulnerability exists in mlflow/mlflow versions before v3.7.0, specifically in the `mlflow/sagemaker/
criticalvulnerability
security
Summary
MLflow versions before v3.7.0 contain a command injection vulnerability (a flaw where attackers insert malicious commands into input that gets executed) in the sagemaker module. An attacker can exploit this by passing a malicious container image name through the `--container` parameter, which the software unsafely inserts into shell commands and runs, allowing arbitrary command execution on affected systems.
Solution / Mitigation
Update MLflow to version v3.7.0 or later.
Vulnerability Details
EPSS (30-day exploit probability)
EPSS: 0.1%
Disclosure Date
March 16, 2026
Classification
Attack Type
Supply Chain
Attack SophisticationTrivial
Impact (CIA+S)
integrityconfidentiality
Affected Vendors
HuggingFace
Related Issues
Original source: https://nvd.nist.gov/vuln/detail/CVE-2025-14287
First tracked: March 16, 2026 at 12:07 PM
Classified by LLM (prompt v3) · confidence: 95%