A vulnerability has been found in Amazon sagemaker-python-sdk up to 2.214.2 and classified as critical. Affected by this vulnerability is the function
sagemaker.serve.save_retrive.version_1_0_0.save.utils
. The manipulation leads to os command injection.
This vulnerability is known as CVE-2024-34073. The attack needs to be approached locally. There is no exploit available.
It is recommended to upgrade the affected component.