cvedb.io
CVE-2026-2031
UNKNOWN · CVSS n/a
EPSS exploitation probability: 0%
Published 2026-05-15T16:16:14.027 · Last modified 2026-06-17T10:30:10.027

Summary

An Improper Access Control vulnerability in several internal API endpoints for Google Cloud Application Integration prior to 2026-01-23 allows a remote, unauthenticated attacker to disclose sensitive internal information and execute arbitrary code using specially crafted HTTP requests to inadvertently exposed internal API endpoints.

Does this affect you?

Add your gear to cvedb and we'll alert you only when a vendor you run ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.