Description
MLflow is an open source platform for managing the end-to-end machine learning lifecycle
Acunetix determined that it was possible to access MLflow API without authentication.
Remediation
Enable authentication for MLflow
References
Related Vulnerabilities
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6332)
WordPress 4.1.x Multiple Vulnerabilities (4.1 - 4.1.36)
WordPress Plugin W3 Total Cache Multiple Vulnerabilities (0.9.4.1)
Virtual Host locations misconfiguration
Insecure Transportation Security Protocol Supported (TLS 1.1)