2025-08-25 07:05:31
GoogleCloud
PUBLISHED
A path traversal vulnerability in the NPM package installation process of Google Cloud Dataform allows a remote attacker to read and write files in other customers repositories via a maliciously crafted package.json file.