SmartHire - HTB Machine Writeup

Difficulty: Medium | OS: Linux | Status: Completed

Exploit an exposed MLflow instance with default credentials to achieve RCE via malicious pickle model deserialization, then escalate to root by hijacking Python's sys.path through a writable plugin directory in a NOPASSWD sudo script.

Tags: MLflow, Pickle Deserialization, PythonPathHijack

[ LOADING MACHINE DATA... ]

_

0xJerry's Lab

ONLINE

UDYAM-TN-20-0233404

Privacy Policy Terms of Service

|Built in the shadows///