VDB

GCVE-110-CLOUD-2024-0044

GCVE-110-CLOUD-2024-0044
Advisory Published
Vulnetix · Advisory published April 3, 2024
Cycode discovered a CI/CD misconfiguration in the Bazel repo, which if exploited could have allowed an attacker to enact a supply chain attack against all Bazel users, which includes Google themselves and therefore likely GCP as well.

Affected Products

VendorProductVersionsPlatforms
GCPCloud Services

References

advisory

Browse GCVE Records

73,053 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›