CVE-2026-2031

UNKNOWN 0.0

Google Cloud Application Integration: Exposed internal APIs allow Information Disclosure and Remote Code Execution.

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

An Improper Access Control vulnerability in several internal API endpoints for Google Cloud Application Integration prior to 2026-01-23 allows a remote, unauthenticated attacker to disclose sensitive internal information and execute arbitrary code using specially crafted HTTP requests to inadvertently exposed internal API endpoints.

CWE	CWE-862
Vendor	google cloud
Product	internal integration platform apis
Published	May 15, 2026
Last Updated	May 15, 2026

Stay Ahead of the Next One

Get instant alerts for google cloud internal integration platform apis

Be the first to know when new unknown vulnerabilities affecting google cloud internal integration platform apis are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Google Cloud / Internal Integration Platform APIs

0 < 2026-01-23

References

NVD ↗ CVE.org ↗ EPSS Data ↗

docs.cloud.google.com: https://docs.cloud.google.com/gemini/enterprise/docs/release-notes#May_07_2026

Credits

🔍 Arvin Shivram