Lucene search
K

8 matches found

GithubExploit
GithubExploit
β€’added 2026/03/10 2:40 p.m.β€’148 views

Exploit for CVE-2026-2472

🚨 CVE-2026-2472-Vertex-AI-SDK-Google-Cloud - Simple Proof of C...

8.6CVSS5.8AI score0.00529EPSS
Exploits2
GithubExploit
GithubExploit
β€’added 2026/02/27 2:57 p.m.β€’203 views

Exploit for CVE-2026-2472

Unauthenticated Stored Cross-Site Scripting XSS in genai/e...

8.6CVSS6.2AI score0.00529EPSS
Exploits2
OSV
OSV
β€’added 2026/02/20 9:31 p.m.β€’4 views

GHSA-QV8J-HGPC-VRQ8 Google Cloud Vertex AI SDK affected by Stored Cross-Site Scripting (XSS)

Stored Cross-Site Scripting XSS in the genai/evalsvisualization component of Google Cloud Vertex AI SDK google-cloud-aiplatform versions from 1.98.0 up to but not including 1.131.0 allows an unauthenticated remote attacker to execute arbitrary JavaScript in a victim's Jupyter or Colab environment...

8.6CVSS5.9AI score0.00529EPSS
Exploits2References6
NVD
NVD
β€’added 2026/02/20 8:25 p.m.β€’9 views

CVE-2026-2472

Stored Cross-Site Scripting XSS in the genai/evalsvisualization component of Google Cloud Vertex AI SDK google-cloud-aiplatform versions from 1.98.0 up to but not including 1.131.0 allows an unauthenticated remote attacker to execute arbitrary JavaScript in a victim's Jupyter or Colab environment...

8.6CVSS0.00529EPSS
Exploits2References6
Cvelist
Cvelist
β€’added 2026/02/20 7:29 p.m.β€’23 views

CVE-2026-2472 Stored Cross-Site Scripting (XSS) in Vertex AI Python SDK Visualization

Stored Cross-Site Scripting XSS in the genai/evalsvisualization component of Google Cloud Vertex AI SDK google-cloud-aiplatform versions from 1.98.0 up to but not including 1.131.0 allows an unauthenticated remote attacker to execute arbitrary JavaScript in a victim's Jupyter or Colab environment...

8.6CVSS0.00529EPSS
Exploits2References1
ATTACKERKB
ATTACKERKB
β€’added 2026/02/20 7:29 p.m.β€’4 views

CVE-2026-2472

Stored Cross-Site Scripting XSS in the genai/evalsvisualization component of Google Cloud Vertex AI SDK google-cloud-aiplatform versions from 1.98.0 up to but not including 1.131.0 allows an unauthenticated remote attacker to execute arbitrary JavaScript in a victim's Jupyter or Colab environment...

8.6CVSS5.9AI score0.00529EPSS
Exploits2References2Affected Software1
CVE
CVE
β€’added 2026/02/20 7:29 p.m.β€’26 views

CVE-2026-2472

CVE-2026-2472 concerns Google Cloud Vertex AI SDK (google-cloud-aiplatform). The vulnerability resides in the _genai/_evals_visualization component and affects versions from 1.98.0 up to, but not including, 1.131.0. It enables a stored XSS where an unauthenticated remote attacker can inject scrip...

8.6CVSS5.9AI score0.00529EPSS
Exploits2References6
Positive Technologies
Positive Technologies
β€’added 2026/02/20 12:0 a.m.β€’11 views

PT-2026-21290

Name of the Vulnerable Software and Affected Versions Google Cloud Vertex AI SDK google-cloud-aiplatform versions 1.98.0 through 1.130.9 Description A Stored Cross-Site Scripting XSS issue exists in the genai/ evals visualization component of Google Cloud Vertex AI SDK. This allows an...

8.6CVSS6.2AI score0.00529EPSS
Exploits2References20
Rows per page
Query Builder