VDB
GCVE-110-CLOUD-2021-0006
GCVE-110-CLOUD-2021-0006
Advisory Published
AWS SageMaker Notebook server lacked a check of the Origin header that
led to a CSRF vulnerability. An attacker could have read sensitive data and execute
arbitrary actions in customer environments. The exact same issue existed in GCP previously.
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| AWS | SageMaker | — | — |
| Azure | Cloud Services | — | — |
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.