Loading...
Loading...
Security advisories published by Gcp
Generated Jul 6, 2026Cohort: 9 vendors with ≥10 CVE advisoriesMethodology ↗
Total all-time: 60 CVEs with Google Cloud Security Bulletins advisories. Source: NVD CVE records joined with vendor advisory publish dates.
58.3% of Google Cloud Security Bulletins's 60 CVEs are CRITICAL or HIGH severity. Industry median: 42.7%. Source: NVD CVSS v3.1.
1 of 60 Google Cloud Security Bulletins CVEs in the last 3 years are on CISA's Known Exploited Vulnerabilities catalog (1.7%). Industry median: 1.1%.
Source: CISA Known Exploited Vulnerabilities catalog (current snapshot). KEV listing means CISA observed active in-the-wild exploitation.
Median time from CVE disclosure to Google Cloud Security Bulletins advisory: 76 days (p25 34 days – p75 99 days). Industry median: 30 days.
Sample size: 38 CVE→advisory pairs over the last 3 years. Source: vendor advisory published_at minus CVE published.
Most-frequently mapped CWEs across Google Cloud Security Bulletins's last 3 years of CVE disclosures. Source: NVD — CWE mapping per MITRE taxonomy.
Latest advisories published by Google Cloud Security Bulletins, straight from the vendor's own feed. Severity labels are the vendor's — scales differ across vendors.
GCP-2026-044 — Published: 2026-06-25Description Description Severity Notes A vulnerability was detected in Application Integration's JavaScript task,…
GCP-2026-043 — Published: 2026-06-24Description Description Severity Notes A vulnerability was found in Firebase Studio where the GetSignedGcsUrl RPC…
GCP-2026-042 — Published: 2026-06-24Description Description Severity Notes A privilege escalation vulnerability was addressed in Cloud Build.
GCP-2026-041 — Published: 2026-06-24Description Description Severity Notes A recent security investigation was conducted regarding log4j vulnerabilities…
GCP-2026-040 — Published: 2026-06-23Description Description Severity Notes A series of vulnerabilities were discovered in Envoy Proxy. For instructions…
GCP-2026-039 — Published: 2026-06-22Description Description Severity Notes A vulnerability in Cloud Logging could have allowed attackers to hijack log…
GCP-2026-038 — Published: 2026-06-22Description Description Severity Notes A vulnerability was found in App Engine where the GetDashboardAppStats GraphQL…
GCP-2026-037 — Published: 2026-06-18Updated: 2026-06-20Description Description Severity Notes 2026-06-20 Update: Added GKE patch versions containing the…
Full advisory archive: /pulse/vendor-advisories →
Snapshot generated Jul 6, 2026. Industry medians refresh every 6 hours; raw vendor counts are queried live on each request.
Spot a factual error in this report?
Email [email protected] with the specific number you're disputing and a link to the authoritative source. We review every report and publish corrections on the methodology page.