Navigating the pickle: Exploiting Vertex AI model uploads for cross-tenant RCE

🔒Cybersecurity Alert: The adept team at Palo Alto Networks’ Unit 42 has responsibly reported a newly discovered vulnerability in Google Cloud’s Vertex AI SDK for Python. This platform compromise could potentially enable a user’s model upload to be hijacked, leading to arbitrary code execution. Google has been duly notified and assuredly is working to address this issue. Learn more about the finding and stay updated on cybersecurity matters! 🔒
👉 https://qfeeds.com/navigating-the-pickle-exploiting-vertex-ai-model-uploads-for-cross-tenant-rce/ 💻
#Cybersecurity #GoogleCloud #VertexAI #PaloAltoNetworks