OSV - Open Source Vulnerabilities

GHSA-5r2p-pjr8-7fh7

SageMaker Python SDK replaced eval() with safe parser in JumpStart search functionality

05 Mar

GHSA-rjrp-m2jw-pv9c

SageMaker Python SDK has Exposed HMAC

02 Feb

GHSA-62rc-f4v9-h543

SageMaker Python SDK has Insecure TLS Configuration

02 Feb

MAL-2025-191680

Malicious code in amzn-sagemaker-studio (PyPI)

07 Sep 2025

GHSA-32g6-mg92-ghm2

SageMaker Workflow component allows possibility of MD5 hash collisions

20 Mar 2025

GHSA-635v-pc42-fr74

AWS SageMaker Training Toolkit logs CodeArtifact Authorization token

11 Sep 2024

GHSA-7pc3-pr3q-58vg

sagemaker-python-sdk Command Injection vulnerability

03 May 2024

GHSA-wjvx-jhpj-r54r

sagemaker-python-sdk vulnerable to Deserialization of Untrusted Data

03 May 2024