CVE-2026-2244
Received Received - Intake

Access Token Exfiltration via Startup Script in Google Cloud Vertex AI

Vulnerability report for CVE-2026-2244, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-02-26

Last updated on: 2026-02-26

Assigner: GoogleCloud

Description

A vulnerability in Google Cloud Vertex AI Workbench from 7/21/2025 to 01/30/2026 allows an attacker to exfiltrate valid Google Cloud access tokens of other users via abuse of a built-in startup script. All instances after January 30th, 2026 have been patched to protect from this vulnerability. No user action is required for this.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-02-26
Last Modified
2026-02-26
Generated
2026-07-06
AI Q&A
2026-02-26
EPSS Evaluated
2026-07-05
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
google cloud_vertex_ai_workbench to 2026-01-30 (exc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-200 The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability exists in Google Cloud Vertex AI Workbench versions from July 21, 2025, to January 30, 2026. It allows an attacker to exfiltrate valid Google Cloud access tokens belonging to other users by abusing a built-in startup script.

The vulnerability has been patched in all instances after January 30, 2026, and no user action is required for protection.

Impact Analysis

An attacker exploiting this vulnerability can steal valid Google Cloud access tokens of other users. This could allow unauthorized access to Google Cloud resources and services that the compromised tokens have permissions for, potentially leading to data breaches, unauthorized operations, or further attacks within the cloud environment.

Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

All instances of Google Cloud Vertex AI Workbench after January 30th, 2026 have been patched to protect from this vulnerability.

No user action is required for instances updated after this date.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-2244. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart