Description
A Missing Authorization vulnerability in the playbook import functionality in Dialogflow CX on Google Cloud Platform allows an authenticated user with specific roles to escalate privileges and potentially take over a GCP project using a maliciously crafted playbook import.


This vulnerability was patched on 15 March 2026, and no customer action is needed.
Published: 2026-06-11
Score: 9.4 Critical
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A missing authorization flaw in Dialogflow CX’s playbook import feature allows an authenticated user with certain roles to import a malicious playbook that effectively elevates the user’s privileges and can lead to takeover of a GCP project. The vulnerability is a direct consequence of inadequate role checks (CWE-862) and can compromise confidentiality, integrity, and availability by granting attackers authorization rights beyond their intended scope.

Affected Systems

The flaw affects Google Cloud’s Dialogflow CX product; no specific version numbers are listed in the advisory, but the issue was addressed by Google in a patch released on March 15, 2026. Customers using Dialogflow CX prior to that date without applying the patch are potentially impacted.

Risk and Exploitability

The CVSS score of 9.4 reflects a high-severity, remote, authenticated attack. EPSS information is not available, and the flaw is not listed in CISA’s KEV catalog. The likely attack vector is a remote, authenticated call to the playbook import endpoint, implying that any user granted the vulnerable role could exploit the flaw from anywhere with network access to the service.

Generated by OpenCVE AI on June 11, 2026 at 12:26 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Restrict IAM roles so that only trusted users possess playbook import permissions.
  • Enable Cloud Audit Logs for playbook import events and configure alerts for anomalous activity.
  • Follow Google Cloud’s recommended access control guidelines to enforce least privilege on Dialogflow CX resources.

Generated by OpenCVE AI on June 11, 2026 at 12:26 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 11 Jun 2026 13:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Thu, 11 Jun 2026 12:45:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google cloud Dialogflow Cx
Vendors & Products Google
Google cloud Dialogflow Cx

Thu, 11 Jun 2026 11:30:00 +0000

Type Values Removed Values Added
Description A Missing Authorization vulnerability in the playbook import functionality in Dialogflow CX on Google Cloud Platform allows an authenticated user with specific roles to escalate privileges and potentially take over a GCP project using a maliciously crafted playbook import. This vulnerability was patched on 15 March 2026, and no customer action is needed.
Title Privilege Escalation in Dialogflow CX via Playbook Import
Weaknesses CWE-862
References
Metrics cvssV4_0

{'score': 9.4, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/U:Clear'}

Subscriptions

Google Cloud Dialogflow Cx
cve-icon MITRE

Status: PUBLISHED

Assigner: GoogleCloud

Published:

Updated: 2026-06-11T12:41:05.278Z

Reserved: 2026-03-24T11:41:11.276Z

Link: CVE-2026-4764

cve-icon Vulnrichment

Updated: 2026-06-11T12:41:00.624Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-06-11T12:16:31.620

Modified: 2026-06-11T15:22:48.573

Link: CVE-2026-4764

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-11T12:30:14Z

Weaknesses