CVE-2025-14279 | MLFlow up to 3.4.x REST Server origin validation

January 12, 2026 Yanac

A vulnerability marked as critical has been reported in MLFlow up to 3.4.x. This affects an unknown part of the component REST Server. The manipulation leads to origin validation error.

This vulnerability is listed as CVE-2025-14279. The attack may be initiated remotely. There is no available exploit.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More

I tried Lumus’ AR waveguide prototype at CES, and saw where AR glasses go next
CVE-2025-69273 | Broadcom DX NetOps Spectrum up to 24.3.10 on Windows improper authentication