CNNVD-202511-2233 Information
CNNVD ID
CNNVD-202511-2233
Related CVE
- CNNVD Published: 2025-11-19
Description (Chinese)
Google Cloud Looker是美国谷歌(Google)公司的一种在线工具,用于将数据转换为可定制的信息丰富的报告和仪表板。 Google Cloud Looker存在安全漏洞,该漏洞源于Looker Developer角色可操纵LookML项目利用Git目录删除期间的竞争条件,可能导致在Looker实例上执行任意命令。
Description (English)
Google Cloud Loker is an online tool for translating data into customized information-rich reporting and dashboards by Google. Google Cloud Loocker has a security loophole, which stems from the fact that the Loocker Developer role can manipulate the competitive conditions during the use of the Git catalogue to remove the Looker project, which could lead to arbitrary orders in the Loocker example.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
谷歌
Published
2025-11-19
Last Modified
2026-02-24
References
https://cloud.google.com/support/bulletins#gcp-2025-052 https://access.redhat.com/security/cve/cve-2025-12472
Patch
https://cloud.google.com/support/bulletins#gcp-2025-052
Share on: