Home > Vulnerability Database > CVE-2026-24123

Mend.io Vulnerability Database

CVE-2026-24123

Good to know:

Date: January 26, 2026

BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to version 1.4.34, BentoML's "bentofile.yaml" configuration allows path traversal attacks through multiple file path fields ("description", "docker.setup_script", "docker.dockerfile_template", "conda.environment_yml"). An attacker can craft a malicious bentofile that, when built by a victim, exfiltrates arbitrary files from the filesystem into the bento archive. This enables supply chain attacks where sensitive files (SSH keys, credentials, environment variables) are silently embedded in bentos and exposed when pushed to registries or deployed. Version 1.4.34 contains a patch for the issue.

Severity Score

7.4

Related Resources (6)

Url: https://github.com/bentoml/BentoML/security/advisories/GHSA-6r62-w2q3-48hf

Url: https://github.com/bentoml/BentoML/commit/84d08cfeb40c5f2ce71b3d3444bbaa0fb16b5ca4

Url: https://nvd.nist.gov/vuln/detail/CVE-2026-24123

Url: https://github.com/bentoml/BentoML/releases/tag/v1.4.34

Url: https://github.com/bentoml/BentoML

Url: https://www.mend.io/vulnerability-database/CVE-2026-24123

Severity Score

7.4

Weakness Type (CWE)

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CWE-22

Top Fix

Upgrade Version

Upgrade to version bentoml - 1.4.34;https://github.com/bentoml/BentoML.git - v1.4.34

Learn More

CVSS v3.1

Base Score:	7.4
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	REQUIRED
Scope (S):	CHANGED
Confidentiality (C):	HIGH
Integrity (I):	NONE
Availability (A):	NONE

Mend.io Vulnerability Database

We found results for “”

CVE-2026-24123

Good to know:

Date: January 26, 2026

Severity Score

Related Resources (6)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?