ByteOS Network

NVD Vulnerability Details :

CVE-2026-1727

Awaiting Analysis

Source-f45cbf4e-4146-4068-b7e1-655ffc2c548c

Published At-06 Feb, 2026 | 22:16

Updated At-09 Feb, 2026 | 16:08

The Agentspace service was affected by a vulnerability that exposed sensitive information due to the use of predictable Google Cloud Storage bucket names. These names were utilized for error logs and temporary staging during data imports from GCS and Cloud SQL. This predictability allowed an attacker to engage in "bucket squatting" by establishing these buckets before a victim's initial use. All versions after December 12th, 2025 have been updated to protect from this vulnerability. No user action is required for this.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	4.0	9.1	CRITICAL	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Clear

Type: Secondary

Version: 4.0

Base score: 9.1

Base severity: CRITICAL

Vector:

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Clear

Weaknesses

CWE ID	Type	Source
CWE-200	Secondary	f45cbf4e-4146-4068-b7e1-655ffc2c548c

CWE ID: CWE-200

Type: Secondary

Source: f45cbf4e-4146-4068-b7e1-655ffc2c548c

References

Hyperlink	Source	Resource
https://docs.cloud.google.com/gemini/enterprise/docs/release-notes#February_06_2026	f45cbf4e-4146-4068-b7e1-655ffc2c548c	N/A

Hyperlink: https://docs.cloud.google.com/gemini/enterprise/docs/release-notes#February_06_2026

Source: f45cbf4e-4146-4068-b7e1-655ffc2c548c

Resource: N/A

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History