CVE-2026-2472: Google Cloud Vertex AI SDK affected by Stored Cross-Site Scripting (XSS)
(updated )
Stored Cross-Site Scripting (XSS) in the _genai/_evals_visualization component of Google Cloud Vertex AI SDK (google-cloud-aiplatform) versions from 1.98.0 up to (but not including) 1.131.0 allows an unauthenticated remote attacker to execute arbitrary JavaScript in a victim’s Jupyter or Colab environment via injecting script escape sequences into model evaluation results or dataset JSON data.
References
- docs.cloud.google.com/support/bulletins
- github.com/JoshuaProvoste/CVE-2026-2472-Vertex-AI-SDK-Google-Cloud
- github.com/advisories/GHSA-qv8j-hgpc-vrq8
- github.com/googleapis/python-aiplatform
- github.com/googleapis/python-aiplatform/commit/8a00d43dbd24e95dbab6ea32c63ce0a5a1849480
- github.com/googleapis/python-aiplatform/releases/tag/v1.131.0
- nvd.nist.gov/vuln/detail/CVE-2026-2472
Code Behaviors & Features
Detect and mitigate CVE-2026-2472 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →