Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Google Looker SQL injection and RCE chain multiple vulnerabilities remote code execution flaw (CVE-2025-12743)

Vulnerability
First reported
Last updated
Happening score
H score 2
1 unique sources, 1 articles

Summary

Hide ▲

Researchers identified Google Looker flaws that could expose secrets, configurations, and cloud data, including possible cross-tenant access in GCP deployments. One issue is CVE-2025-12743, a SQL injection path into the internal database that stores protected data. The other is a chained RCE exploit that could run arbitrary code on a Looker server, and Google has since fixed both issues and directed on-prem customers to update to secure versions in GCP-2025-052.

Related Happenings

Google Cloud Platform API key revocation testing finds minutes-long post-deletion authentication

Technical Analysis
First: 21.05.2026 23:07 Last: 21.05.2026 23:07 Sources 1

About this happening: Testing showed **deleted Google Cloud Platform API keys** could still authenticate for **minutes after revocation**, creating a post-deletion abuse window that weakens **incident...

Open Happening

Cursor local SQLite secret-storage exposing credentials security flaw

Vulnerability
First: 29.04.2026 18:00 Last: 29.04.2026 18:00 Sources 1

About this happening: A **high-severity** **Cursor** flaw lets installed extensions read secrets stored locally, exposing **API keys** and **session tokens** without user interaction. The weakness stem...

Open Happening

Unit 42 Zealot proves autonomous cloud attack chaining in GCP

Technical Analysis
First: 23.04.2026 13:00 Last: 23.04.2026 13:00 Sources 1

About this happening: **Unit 42's Zealot PoC** shows autonomous AI can chain cloud attack stages in a live **Google Cloud Platform** environment, shrinking defender reaction time to minutes. The system...

Open Happening

Vim and GNU Emacs file-open RCE flaws remote code execution flaw

Vulnerability
First: 01.04.2026 00:45 Last: 01.04.2026 00:45 Sources 1

About this happening: **Vim** and **GNU Emacs** have **file-open remote code execution** flaws that can run attacker code as soon as a crafted file is opened. The **Vim** issue affects **9.2.0271 and e...

Open Happening

Google Looker Studio cross-tenant SQL injection flaws SQL injection flaw

Vulnerability
First: 10.03.2026 15:20 Last: 10.03.2026 15:20 Sources 1

About this happening: Researchers disclosed **nine cross-tenant vulnerabilities** in **Google Looker Studio** that could let attackers run **arbitrary SQL queries** on victims' databases and exfiltrate...

Open Happening

Timeline

  1. 04.02.2026 13:00 2 articles · 3mo ago

    Tenable discloses Looker SQL injection and RCE chain

    Initial Disclosure

    On 2026-02-04, Tenable researcher Liv Matan described two security flaws in Google Looker: CVE-2025-12743, a SQL injection path into Looker's internal database that stores user lists, secrets, and configurations, and a separate remote code execution chain that could run arbitrary code on a Looker server. The findings could let an attacker steal secrets and configurations, perform lateral movement inside the target environment, and, in Google Cloud Platform deployments, potentially reach other tenants' data.

    Show sources
    Open in new tab