High7.5Vendor: MediumRed Hat Linux Updated
Data integrity compromise via CR/LF injection
CVE-2026-55603 Published Jun 22, 2026Updated by vendor Jun 22, 2026
Affected products & platforms
Red Hat LinuxUnclassified
Summary
Data integrity compromise via CR/LF injection. Red Hat rates this moderate (CVSS 7.5). Weakness: CWE-93.
Fixed versions
- 3.0.7
- 4.1.1
Official advisory · high-confidence parse· fetched 7 hours ago·verify at source
Mitigation checklist
Recommended fix / mitigation
- Restrict network access to MLflow services. Do not pass untrusted user input into proxy target or header configuration. Upgrade http-proxy-middleware when updated packages are available.
Official advisory · high-confidence parse· fetched 7 hours ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.