Cloud Dialogflow CX Messenger

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2025-12952	Google Cloud Dialogflow CX Messenger	Hig	0.57	—	0.00		Dec 10, 2025	A privilege escalation vulnerability exists in Google Cloud's Dialogflow CX. Dialogflow agent developers with Webhook editor permission are able to configure Webhooks using Dialogflow service agent access token authentication. This allows the attacker to escalate their…
CVE-2025-13427	Google Cloud Dialogflow CX Messenger	Med	0.45	—	0.00		Dec 18, 2025	An authentication bypass vulnerability in Google Cloud Dialogflow CX Messenger allowed unauthenticated users to interact with restricted chat agents, gaining access to the agents' knowledge and the ability to trigger their intents, by manipulating initialization parameters or…

CVE-2025-12952HigDec 10, 2025
Google
Cloud Dialogflow CX Messenger
risk 0.57cvss —epss 0.00
A privilege escalation vulnerability exists in Google Cloud's Dialogflow CX. Dialogflow agent developers with Webhook editor permission are able to configure Webhooks using Dialogflow service agent access token authentication. This allows the attacker to escalate their…
CVE-2025-13427MedDec 18, 2025
Google
Cloud Dialogflow CX Messenger
risk 0.45cvss —epss 0.00
An authentication bypass vulnerability in Google Cloud Dialogflow CX Messenger allowed unauthenticated users to interact with restricted chat agents, gaining access to the agents' knowledge and the ability to trigger their intents, by manipulating initialization parameters or…