CVE-2026-12879

Published Jul 9, 2026 Modified Jul 9, 2026 CWE-441 CWE-610

Description

An Improper Input Validation vulnerability in BigQuery DAO in Google Cloud Apigee versions prior to 2026-06-12 on Google Cloud Platform allows an authenticated attacker to exfiltrate cross-tenant data. This vulnerability was patched on 12 June 2026 on the Apigee Servers, and no customer action is needed.

Is your site exposed to CVE-2026-12879?

Run a free security scan — no signup, results in seconds.

Weakness Type (CWE)

CWE-441 CWE-441
CWE-610 CWE-610

References

Frequently Asked Questions

What is CVE-2026-12879? +
An Improper Input Validation vulnerability in BigQuery DAO in Google Cloud Apigee versions prior to 2026-06-12 on Google Cloud Platform allows an authenticated attacker to exfiltrate cross-tenant data. This vulnerability was patched on 12 June 2026 on the Apigee Servers, and no customer action is needed.
How do I check if I'm vulnerable to CVE-2026-12879? +
You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.

Related Vulnerabilities

Don't wait for an exploit

Scan your website for vulnerabilities like CVE-2026-12879 — free, no signup required.