VDB

CVE-2026-2473

CVE-2026-2473 PUBLISHED CVSS 7.699999809265137 HIGH

Predictable bucket naming in Vertex AI Experiments in Google Cloud Vertex AI from version 1.21.0 up to (but not including) 1.133.0 on Google Cloud Platform allows an unauthenticated remote attacker to achieve cross-tenant remote code execution, model theft, and poisoning via pre-creating predictably named Cloud Storage buckets (Bucket Squatting). This vulnerability was patched and no customer action is needed.

EPSS 0.31% · 54.6th percentile

Risk Scores

CVSS v4.0
7.699999809265137
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/U:Clear
EPSS Score
0.31%
54.6th percentile

Affected Products

VendorProductVersions
Google CloudVertex AI Experiments1.21.0, 1.21.0
PyPIgoogle-cloud-aiplatform1.21.0, 1.21.0

Timeline

  • Feb 20, 2026 CVE Published
  • Feb 21, 2026 EPSS Score
  • Feb 21, 2026 PoC Published
  • Feb 21, 2026 PoC Published
  • Feb 23, 2026 EPSS Score
  • Feb 24, 2026 EPSS Score
  • Feb 26, 2026 EPSS Score
  • Feb 27, 2026 EPSS Score
  • Mar 1, 2026 EPSS Score
  • Mar 3, 2026 EPSS Score
  • Mar 4, 2026 EPSS Score
  • Mar 4, 2026 PoC Published

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›