GCVE - cpe:2.3:a:aws:amazon_braket_python_sdk:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:aws:amazon_braket_python_sdk:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Aws (`e6707f00-6abb-51df-808c-9e3417305027`)
Product	Amazon Braket Python Sdk (`22a9ca24-aa74-5bd5-aa27-c321b6d34321`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2026-9291`	vulnerable	2026-06-03 15:29:30.073607	Insecure Deserialization in Amazon Braket SDK Job Results Processing HIGH (7.1) Insecure deserialization in the job results processing component in Amazon Braket SDK before 1.117.0 might allow a remote authenticated user with S3 write access to the job output bucket to achieve arbitrary code execution on any machine that processes job results. We recommend you upgrade to amazon-braket-sdk version 1.117.0 or later. Published: 2026-05-22T18:12:24.452Z Updated: 2026-05-22T19:03:41.903Z Open on db.gcve.eu Reference links https://github.com/amazon-braket/amazon-braket-sdk-python/releases/tag/v1.117.0 https://aws.amazon.com/security/security-bulletins/2026-036-aws/ https://github.com/amazon-braket/amazon-braket-sdk-python/security/advisories/GHSA-g697-2xrc-gc46	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.