Privilege escalation in Google Cloud Looker Studio

CVE-2025-12405

An improper privilege management vulnerability was found in Looker Studio. It impacted all JDBC-based connectors. A Looker Studio user with report view access could make a copy of the report and execute arbitrary SQL that would run on the…

Vulnerability class: Privilege Escalation

EPSS: 0.002 (13.5th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References