Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:35 a.m.5 views

CVE-2024-34073

sagemaker-python-sdk is a library for training and deploying machine learning models on Amazon SageMaker. In affected versions the capturedependencies function in sagemaker.serve.saveretrive.version100.save.utils module allows for potentially unsafe Operating System OS Command Injection if...

7.8CVSS7.9AI score0.01143EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2024/05/03 8:26 p.m.4 views

anymodality (=0.1.0), autogluon-cloud (>=0.1.1b20230324 <=0.2.1b20230929) +19 more potentially affected by CVE-2024-34073 via sagemaker (>=1.52.1 <=2.207.1)

sagemaker PYPI version =1.52.1, =0.1.1b20230324, =0.9.0, =0.2.8, =1.97.0.dev0, =1.0.0, =1.0.0, =0.7.3, =0.1.2, =0.0.9, =0.1.6, =0.2.0, =0.5.1 and more Source cves: CVE-2024-34073 Source advisory: OSV:GHSA-7PC3-PR3Q-58VG...

7.8CVSS7.1AI score0.01143EPSS
Exploits0
NVD
NVD
added 2024/05/03 11:15 a.m.36 views

CVE-2024-34073

sagemaker-python-sdk is a library for training and deploying machine learning models on Amazon SageMaker. In affected versions the capturedependencies function in sagemaker.serve.saveretrive.version100.save.utils module allows for potentially unsafe Operating System OS Command Injection if...

7.8CVSS8.1AI score0.01143EPSS
Exploits0References3
CVE
CVE
added 2024/05/03 10:11 a.m.60 views

CVE-2024-34073

The CVE concerns the sagemaker-python-sdk, where the capture_dependencies function in sagemaker.serve.save_retrive.version_1_0_0.save.utils allows potentially unsafe OS command injection if a malicious requirements_path is passed. This could enable remote code execution, denial of service, and co...

7.8CVSS8AI score0.01143EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/05/03 10:11 a.m.13 views

CVE-2024-34073 Command Injection in sagemaker-python-sdk

sagemaker-python-sdk is a library for training and deploying machine learning models on Amazon SageMaker. In affected versions the capturedependencies function in sagemaker.serve.saveretrive.version100.save.utils module allows for potentially unsafe Operating System OS Command Injection if...

7.8CVSS8.1AI score0.01143EPSS
Exploits0References3
Rows per page
Query Builder