CVE-2026-8596 | AWS Amazon SageMaker Python SDK up to 2.257.1/3.7.1 Serve cleartext storage (GHSA-7hh5-prp2-mfh5)

May 15, 2026 Yanac

A vulnerability was found in AWS Amazon SageMaker Python SDK up to 2.257.1/3.7.1. It has been declared as problematic. Affected by this issue is some unknown functionality of the component Serve Component. Executing a manipulation can lead to cleartext storage of sensitive information.

This vulnerability is registered as CVE-2026-8596. It is possible to launch the attack remotely. No exploit is available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More