## **PoC** BentoML can be vulnerable to either [RCE](https://github.com/protectai/ai-exploits/blob/main/bentoml/bentoml-rce.yaml_) and a pickle based RCE that has a [metasploit module](https://github.com/protectai/ai-exploits/blob/main/bentoml/bentoml_pickle_rce.py) by protectAI. ## **Details** BentoML is a model serving framework that offers a unified standard for AI inference, model packaging, and serving optimizations. [Paper](https://huntr.com/bounties/349a1cce-6bb5-4345-82a5-bf7041b65a68) ID: AML.T0010.001