Zero Day MonitorZDM

← Back to list

EST

PRE-CVE

google · google cloud platform vertex ai

Excessive Default Permissions in GCP Vertex AI Service Agents

56% confidence

Description

Google Cloud Platform's Vertex AI Agent Engine contains a vulnerability where the Per-Project, Per-Product Service Agent (P4SA) associated with deployed AI agents has overly permissive default permissions. This allows an attacker who compromises a single service agent to extract its credentials and gain privileged access to consumer and producer projects, including sensitive data, restricted images, and source code within Google's infrastructure.

Affected Products

Vendor	Product	Versions
google	google cloud platform vertex ai	—

Related News (1 articles)

Tier C

Palo Alto Unit 423h ago

Double Agents: Exposing Security Blind Spots in GCP Vertex AI

→ No new info (linked only)

CISA KEV❌ No

Actively exploited❌ No

CWECWE-276, CWE-269

PublishedMar 31, 2026

Last enriched3h ago

Tags

cloud-securityai-securityprivilege-escalationmisconfiguration

Trending Score30

Source articles1

Independent1

Info Completeness6/14

Missing: cve_id, versions, cvss, epss, kev, exploit, patch, iocs

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

HIGHCVE-2026-4676EXP

Use after free in Dawn in Google Chrome prior to 146.0.7680.165 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

HIGHCVE-2026-4677EXP

Inappropriate implementation in WebAudio in Google Chrome prior to 146.0.7680.165 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity

HIGHCVE-2026-4680EXP

Use after free in FedCM in Google Chrome prior to 146.0.7680.165 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

HIGHCVE-2026-4673EXP

Heap buffer overflow in WebAudio in Google Chrome prior to 146.0.7680.165 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: High)

HIGHCVE-2026-4679EXP

Integer overflow in Fonts in Google Chrome prior to 146.0.7680.165 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: High)

Pin to Dashboard

Verification

State: reported

Confidence: 56%

Vulnerability Timeline

CVE Published

Mar 31, 2026

Discovered by ZDM

Mar 31, 2026