Medium severity5.9OSV Advisory· Published Mar 20, 2025· Updated Apr 15, 2026
CVE-2025-0508
CVE-2025-0508
Description
A vulnerability in the SageMaker Workflow component of aws/sagemaker-python-sdk allows for the possibility of MD5 hash collisions in all versions. This can lead to workflows being inadvertently replaced due to the reuse of results from different configurations that produce the same MD5 hash. This issue can cause integrity problems within the pipeline, potentially leading to erroneous processing outcomes.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
sagemakerPyPI | < 2.237.3 | 2.237.3 |
Affected products
2Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.