Kasimir123

**Name of the Vulnerable Software and Affected Versions** sagemaker-python-sdk versions prior to 2.218.0 **Description** The issue concerns potentially unsafe deserialization in the sagemaker.base deserializers.NumpyDeserializer module when untrusted data is passed as pickled object arrays. This may allow an unprivileged third party to cause remote code execution or denial of service, affecting both confidentiality and integrity. **Recommendations** For versions prior to 2.218.0, upgrade to version 2.218.0 to resolve the issue. For users unable to upgrade, do not pass pickled numpy object arrays which originated from an untrusted source, or that could have been tampered with. Only pass pickled numpy object arrays from trusted sources.

**Name of the Vulnerable Software and Affected Versions** sagemaker-python-sdk versions prior to 2.214.3 **Description** The capture dependencies function in the `sagemaker.serve.save retrive.version 1 0 0.save.utils` module allows for potentially unsafe Operating System (OS) Command Injection if an inappropriate command is passed as the `requirements path` parameter. This may allow an unprivileged third party to cause remote code execution, denial of service, affecting both confidentiality and integrity. **Recommendations** For versions prior to 2.214.3, upgrade to version 2.214.3 or later. As a temporary workaround for users unable to upgrade, do not override the `requirements path` parameter of the capture dependencies function in `sagemaker.serve.save retrive.version 1 0 0.save.utils`, and instead use the default value.