CVE-2026-1778

Publication date

2026-02-02 20:14:57

Family

AMZN

State

PUBLISHED

Description

Amazon SageMaker Python SDK before v3.1.1 or v2.256.0 disables TLS certificate verification for HTTPS connections made by the service when a Triton Python model is imported, incorrectly allowing for requests with invalid and self-signed certificates to succeed.