CVE-2026-4810 — Google Agent Development Kit (ADK) has a Code Injection and Missing Authenticati

Description

A Code Injection and Missing Authentication vulnerability in Google Agent Development Kit (ADK) versions 1.7.0 (and 2.0.0a1) through 1.28.1 (and 2.0.0a2) on Python (OSS), Cloud Run, and GKE allows an unauthenticated remote attacker to execute arbitrary code on the server hosting the ADK instance. This vulnerability was patched in versions 1.28.1 and 2.0.0a2. Customers need to redeploy the upgraded ADK to their production environments. In addition, if they are running ADK Web locally, they also need to upgrade their local instance.

How to fix CVE-2026-4810

To remediate CVE-2026-4810, upgrade the affected package to a fixed version below.

—upgrade to 1.28.1 or later

Is CVE-2026-4810 being exploited?

Low — EPSS is 4.1%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

>= 1.7.0, < 1.28.1

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 4.0	—	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:P/U:Amber

References (3)

ADVISORYnvd.nist.gov/vuln/detail/CVE-2026-4810
PATCHgithub.com/google/adk-python
WEBgithub.com/google/adk-python/blob/main/CHANGELOG.md#1274-2026-03-26