Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-rg7c-g689-fr3x
  • PyPI/google-adk
 Google Agent Development Kit (ADK) has a Code Injection and Missing Authentication vulnerability 13 Apr
  • Fix available
  • Severity - 9.3 (Critical)
GHSA-qv8j-hgpc-vrq8
  • PyPI/google-cloud-aiplatform
 Google Cloud Vertex AI SDK affected by Stored Cross-Site Scripting (XSS) 20 Feb
  • Fix available
  • Severity - 8.6 (High)
GHSA-wh2j-26j7-9728
  • PyPI/google-cloud-aiplatform
 Google Cloud Vertex AI has a a vulnerability involving predictable bucket naming 20 Feb
  • Fix available
  • Severity - 7.7 (High)
MAL-2026-874
  • PyPI/google-search-result
 Malicious code in google-search-result (PyPI) 12 Feb
  • No fix available
MAL-2025-191741
  • PyPI/google-cloud-iam-credentials
 Malicious code in google-cloud-iam-credentials (PyPI) 12 Nov 2025
  • No fix available
MAL-2024-12280
  • PyPI/google-play-store
 Malicious code in google-play-store (PyPI) 01 Oct 2024
  • No fix available
MAL-2025-4665
  • PyPI/grpc-google-bigtable-v2
 Malicious code in grpc-google-bigtable-v2 (PyPI) 06 Sep 2024
  • No fix available
MAL-2025-4666
  • PyPI/proto-google-cloud-dlp-v2beta1
 Malicious code in proto-google-cloud-dlp-v2beta1 (PyPI) 06 Sep 2024
  • No fix available
MAL-2024-12279
  • PyPI/google-cloud-datacatalog-lineage-producer-client
 Malicious code in google-cloud-datacatalog-lineage-producer-client (PyPI) 26 Jul 2024
  • No fix available
MAL-2025-6512
  • PyPI/google-appengine-ext
 Malicious code in google-appengine-ext (PyPI) 26 Jul 2024
  • No fix available
MAL-2024-1144
  • PyPI/google-requests
 Malicious code in google-requests (PyPI) 24 Mar 2024
  • No fix available
GHSA-8g23-2q5p-8866
  • PyPI/apache-airflow-providers-google
 Apache Airflow Google Provider Improper Input Validation vulnerability 24 Feb 2023
  • Fix available
  • Severity - 9.8 (Critical)
GHSA-h8p2-8g72-qpgh
  • PyPI/apache-airflow-providers-google
 Apache Airflow Google Provider Improper Input Validation vulnerability 24 Feb 2023
  • Fix available
  • Severity - 7.5 (High)
GHSA-jwvw-v7c5-m82h
  • Go/github.com/protocolbuffers/protobuf
  • Maven/com.google.protobuf:protobuf-parent
  • NuGet/Google.Protobuf
  • Packagist/google/protobuf
  • PyPI/protobuf
 protobuf susceptible to buffer overflow 13 May 2022
  • Fix available
  • Severity - 8.7 (High)
PYSEC-2020-142
  • PyPI/tink
  • github.com/google/tink
 See record for full details 19 Oct 2020
  • Fix available