A vulnerability has been found in Amazon sagemaker-python-sdk up to 2.214.2 and classified as critical. Affected by this vulnerability is the function sagemaker.serve.save_retrive.version_1_0_0.save.utils. The manipulation leads to os command injection.

This vulnerability is known as CVE-2024-34073. The attack needs to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.