{"@context":"https://openvex.dev/ns/v0.2.0","@id":"https://database.harborguard.co/cve/CVE-2026-4764/vex.json","author":"HarborGuard Database","role":"Document Creator","timestamp":"2026-06-11T12:41:05.278Z","version":1,"tooling":"HarborGuard Database (https://database.harborguard.co)","statements":[{"vulnerability":{"name":"CVE-2026-4764","@id":"https://www.cve.org/CVERecord?id=CVE-2026-4764","description":"A Missing Authorization vulnerability in the playbook import functionality in Dialogflow CX on Google Cloud Platform allows an authenticated user with specific roles to escalate privileges and potentially take over a GCP project using a maliciously crafted playbook import.\n\n\nThis vulnerability was patched on 15 March 2026, and no customer action is needed."},"products":[{"@id":"cpe:2.3:a:google_cloud:dialogflow_cx:*:*:*:*:*:*:*:*","identifiers":{"cpe23":"cpe:2.3:a:google_cloud:dialogflow_cx:*:*:*:*:*:*:*:*"}}],"status":"affected","action_statement":"Update to a fixed version: 2026-03-15.","timestamp":"2026-06-11T12:41:05.278Z"}]}