216.73.217.24

CVE-2026-2274

· Published 19/02/2026 16:27 · Modified 20/02/2026 13:49

Labels: CVE-2026-2274 2026-02-19CVE-2026-2274CWE-918f45cbf4e-4146-4068-b7e1-655ffc2c548c

Essential information

Published
19/02/2026 16:27
Modified
20/02/2026 13:49
Author
Creator
CVSS
8.5 HIGH (v3) 8.5 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

A SSRF and Arbitrary File Read vulnerability in AppSheet Core in Google AppSheet prior to 2025-11-23 allows an authenticated remote attacker to read sensitive local files and access internal network resources via crafted requests to the production cluster. This vulnerability was patched and no customer action is needed.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
f45cbf4e-4146-4068-b7e1-655ffc2c548c
NVD
View on NVD

Affected products (CPE)

ProductCPE
google / appsheet cpe:2.3:a:google:appsheet:*:*:*:*:*:*:*:*

References