all InfoSec news
Lambda Layers Code Execution Flaw Leads To Supply Chain On AI/ML Applications
Cyber Security News cybersecuritynews.com
A new supply-chain vulnerability has been identified in the Lambda Layers of third-party TensorFlow-based Keras models. This vulnerability could allow threat actors to inject arbitrary code into any AI/ML application. Any Lambda Layers that were built before version Keras 2.13 are susceptible to a supply chain attack. A threat actor can create and distribute a […]
The post Lambda Layers Code Execution Flaw Leads To Supply Chain On AI/ML Applications appeared first on Cyber Security News.
ai application applications arbitrary code attack code code execution cyber security flaw inject lambda ml security party supply supply chain supply chain attack supply chain security tensorflow third third-party threat threat actors version vulnerability