Security Advisory

CVE-2026-4092

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-13 15:44:55

Last updated 2026-03-16 18:34:49

Assigner Google

State PUBLISHED

Description

Path Traversal in Clasp impacting versions < 3.2.0 allows a remote attacker to perform remote code execution via a malicious Google Apps Script project containing specially crafted filenames with directory traversal sequences.

← Browse all CVEs View on cve.org ↗