CVE-2025-0453: MLflow Uncontrolled Resource Consumption vulnerability

March 20, 2025 (updated March 21, 2025)

In mlflow/mlflow version 2.17.2, the /graphql endpoint is vulnerable to a denial of service attack. An attacker can create large batches of queries that repeatedly request all runs from a given experiment. This can tie up all the workers allocated by MLFlow, rendering the application unable to respond to other requests. This vulnerability is due to uncontrolled resource consumption.

References

github.com/advisories/GHSA-49m6-vrr9-2cqm
github.com/mlflow/mlflow
huntr.com/bounties/788327ec-714a-4d5c-83aa-8df04dd7612b
nvd.nist.gov/vuln/detail/CVE-2025-0453

Code Behaviors & Features

Detect and mitigate CVE-2025-0453 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →