CVE-2026-2473

UNKNOWN 0.0

Bucket Squatting in Vertex AI Experiments leads to RCE and Model Theft.

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Predictable bucket naming in Vertex AI Experiments in Google Cloud Vertex AI from version 1.21.0 up to (but not including) 1.133.0 on Google Cloud Platform allows an unauthenticated remote attacker to achieve cross-tenant remote code execution, model theft, and poisoning via pre-creating predictably named Cloud Storage buckets (Bucket Squatting). This vulnerability was patched and no customer action is needed.

CWE	CWE-340
Vendor	google cloud
Product	vertex ai experiments
Published	Feb 20, 2026
Last Updated	Feb 23, 2026

Stay Ahead of the Next One

Get instant alerts for google cloud vertex ai experiments

Be the first to know when new unknown vulnerabilities affecting google cloud vertex ai experiments are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Google Cloud / Vertex AI Experiments

1.21.0 < 1.133.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

docs.cloud.google.com: https://docs.cloud.google.com/support/bulletins#gcp-2026-012

Credits

🔍 Omer Amiad