CVE-2024-6577

Name of the Vulnerable Software and Affected Versions pytorch/serve (affected versions not specified)

Description The issue concerns the script 'upload results to s3.sh' referencing the S3 bucket 'benchmarkai-metrics-prod' without ensuring its ownership or confirming its accessibility. This could lead to potential security vulnerabilities or unauthorized access to the bucket if it is not properly secured or claimed by the appropriate entity. The problem may result in data breaches, exposure of proprietary information, or unauthorized modifications to stored data.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.