sagemaker-serve 1.7.0

Direct Vulnerabilities

Known vulnerabilities in the sagemaker-serve package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
M Improper Validation of Integrity Check Value sagemaker-serve is a SageMaker Serve package for model serving and deployment Affected versions of this package are vulnerable to Improper Validation of Integrity Check Value in the Triton inference handler. An attacker can execute arbitrary code with the SageMaker execution role's IAM permissions by uploading a specially crafted model artifact payload to the S3 path used by the handler, provided they have authenticated S3 write access to that location. How to fix Improper Validation of Integrity Check Value? Upgrade `sagemaker-serve` to version 1.8.0 or higher.	[,1.8.0)
H Cleartext Storage of Sensitive Information sagemaker-serve is a SageMaker Serve package for model serving and deployment Affected versions of this package are vulnerable to Cleartext Storage of Sensitive Information in the `ModelBuilder/Serve` component. An attacker can extract sensitive HMAC signing keys by accessing the SageMaker describe APIs and, with sufficient permissions, forge valid integrity signatures for malicious model artifacts, potentially leading to code execution in inference containers with elevated IAM permissions. This is only exploitable if the attacker has permissions to call the describe APIs and S3 write access to the model artifact path. How to fix Cleartext Storage of Sensitive Information? Upgrade `sagemaker-serve` to version 1.8.0 or higher.	[,1.8.0)

Vulnerability

Vulnerable Version

Improper Validation of Integrity Check Value

sagemaker-serve is a SageMaker Serve package for model serving and deployment

Affected versions of this package are vulnerable to Improper Validation of Integrity Check Value in the Triton inference handler. An attacker can execute arbitrary code with the SageMaker execution role's IAM permissions by uploading a specially crafted model artifact payload to the S3 path used by the handler, provided they have authenticated S3 write access to that location.

How to fix Improper Validation of Integrity Check Value?

Upgrade sagemaker-serve to version 1.8.0 or higher.

[,1.8.0)

Cleartext Storage of Sensitive Information

sagemaker-serve is a SageMaker Serve package for model serving and deployment

Affected versions of this package are vulnerable to Cleartext Storage of Sensitive Information in the ModelBuilder/Serve component. An attacker can extract sensitive HMAC signing keys by accessing the SageMaker describe APIs and, with sufficient permissions, forge valid integrity signatures for malicious model artifacts, potentially leading to code execution in inference containers with elevated IAM permissions. This is only exploitable if the attacker has permissions to call the describe APIs and S3 write access to the model artifact path.

How to fix Cleartext Storage of Sensitive Information?

Upgrade sagemaker-serve to version 1.8.0 or higher.

[,1.8.0)

sagemaker-serve@1.7.0

SageMaker Serve package for model serving and deployment

latest version

latest non vulnerable version

first published

latest version published

licenses detected

Direct Vulnerabilities

Fix vulnerabilities automatically