python · amazon-braket-sdkCritical
Amazon Braket SDK insecure deserialization in deserialize_values()
Insecure deserialization vulnerability in deserialize_values(): the dataFormat field from job results JSON is used without validation, enabling pickle.
What changed
Insecure deserialization vulnerability in deserialize_values(): the dataFormat field from job results JSON is used without validation, enabling pickle.loads() execution of attacker-controlled payloads.
Who it affects
Users of amazon-braket-sdk versions >= 1.10.0 and < 1.117.0 with S3 write access to their Braket job output buckets.
What to do today
Upgrade to version 1.117.0 or later immediately. If unable, restrict S3 bucket policies to enforce least-privilege access and validate the dataFormat field before calling job.result().
The trail
Collected→
Audited→
Written→
Published