Auth bypass in Google Cloud Internal Integration Platform Apis
CVE-2026-2031
An Improper Access Control vulnerability in several internal API endpoints for Google Cloud Application Integration prior to 2026-01-23 allows a remote, unauthenticated attacker to disclose sensitive internal information and execute arbitr…
Vulnerability class: Broken Access Control
EPSS: 0.004 (62.6th percentile) — read the EPSS interpretation.
Affected products
- Google Cloud Internal Integration Platform Apis — versions 0