Unrated severityNVD Advisory· Published Mar 3, 2026· Updated Mar 4, 2026
Google Cloud Build Comment Control Bypass
CVE-2026-3136
Description
An improper authorization vulnerability in GitHub Trigger Comment Control in Google Cloud Build prior to 2026-1-26 allows a remote attacker to execute arbitrary code in the build environment.
This vulnerability was patched on 26 January 2026, and no customer action is needed.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<2026-01-26+ 1 more
- (no CPE)range: <2026-01-26
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.