CVE-2026-2244
Received Received - Intake
Access Token Exfiltration via Startup Script in Google Cloud Vertex AI

Publication date: 2026-02-26

Last updated on: 2026-02-26

Assigner: GoogleCloud

Description
A vulnerability in Google Cloud Vertex AI Workbench from 7/21/2025 to 01/30/2026 allows an attacker to exfiltrate valid Google Cloud access tokens of other users via abuse of a built-in startup script. All instances after January 30th, 2026 have been patched to protect from this vulnerability. No user action is required for this.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-02-26
Last Modified
2026-02-26
Generated
2026-06-16
AI Q&A
2026-02-26
EPSS Evaluated
2026-06-14
NVD
CVE-2026-2244
EUVD
EUVD-2026-8853
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
google cloud_vertex_ai_workbench to 2026-01-30 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-200 The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in Google Cloud Vertex AI Workbench versions from July 21, 2025, to January 30, 2026. It allows an attacker to exfiltrate valid Google Cloud access tokens belonging to other users by abusing a built-in startup script.

The vulnerability has been patched in all instances after January 30, 2026, and no user action is required for protection.

Impact Analysis

An attacker exploiting this vulnerability can steal valid Google Cloud access tokens of other users. This could allow unauthorized access to Google Cloud resources and services that the compromised tokens have permissions for, potentially leading to data breaches, unauthorized operations, or further attacks within the cloud environment.

Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

All instances of Google Cloud Vertex AI Workbench after January 30th, 2026 have been patched to protect from this vulnerability.

No user action is required for instances updated after this date.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-2244. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart