Open source library for training and deploying models on Amazon SageMaker.
Apache-2.0
All Versions
Vulnerabilities (Public)
Known vulnerabilities and security issues detected in the extension's dependencies and code.
| Vulnerability ID | Advisory | Affected Versions | |||
|---|---|---|---|---|---|
| CVE-2026-8596 | Affected versions of the sagemaker package are vulnerable to Cleartext Storage of Sensitive Information due to the ModelBuilder/Serve component placing an HMAC signing key into a container environment… | High | – | – | >=2.199.0,<=2.257.1 >=3.0.0,<=3.7.1 |
| CVE-2026-1778 | Affected versions of the sagemaker package are vulnerable to Improper Certificate Validation due to SSL certificate verification being globally disabled in the Triton Python backend. The sagemaker-ser… | High | – | – | >=3.0,<3.1.1 <2.256.0 |
| CVE-2026-1777 | Affected versions of the sagemaker package are vulnerable to Information Disclosure due to an HMAC secret key being stored in environment variables that are disclosed via the SageMaker DescribeTrainin… | High | – | – | >=3.0,<3.2.0 <2.256.0 |
| CVE-2024-34073 | Affected versions of the sagemaker package are vulnerable to OS Command Injection due to improper handling of the `requirements_path` parameter. The `capture_dependencies` function in the `sagemaker.s… | High | – | – | >=2.199.0,<2.214.3 |
| CVE-2024-34072 | sagemaker-python-sdk is a library for training and deploying machine learning models on Amazon SageMaker. The sagemaker.base_deserializers.NumpyDeserializer module before v2.218.0 allows potentially u… | High | – | – | <2.218.0 |
| CVE-2026-8597 | Affected versions of the sagemaker package are vulnerable to Insecure Deserialisation due to the ModelBuilder Triton inference handler deserialising model artifacts without performing integrity verifi… | Medium | – | – | >=2.199.0,<=2.257.1 >=3.0.0,<=3.7.1 |
| CVE-2025-0508 | A vulnerability in the SageMaker Workflow component of aws/sagemaker-python-sdk allows for the possibility of MD5 hash collisions in all versions. This can lead to workflows being inadvertently replac… | Medium | – | – | <2.237.3 |
| CVE-2022-40754 | Sagemaker 2.111.0 updates its dependency 'apache-airflow' to v2.4.0 to include a security fix. | Medium | – | – | <2.111.0 |
| SFTY-20260305-71051 | SageMaker Python SDK replaced eval() with safe parser in JumpStart search functionality | Unknown | – | – | < 3.4.0 |
Safety Discovered Vulnerabilities
Additional security issues found by Safety, exclusive to our platform.