Database Connection Vulnerability in Looker by Google Cloud
CVE-2025-12741

7.7HIGH

Key Information:

Vendor: Google Cloud
Status: Looker
Vendor: CVE Published:; 24 November 2025

🔔 Create Google Cloud Vulnerability Alert

What is CVE-2025-12741?

A vulnerability exists in Looker that allows users with Developer roles to manipulate LookML to execute arbitrary commands via a database connection created with the Denodo driver. Looker-hosted instances have been secured against this issue, requiring no user intervention. However, Self-hosted instances must be upgraded immediately to ensure protection. The vulnerability has been patched in all supported Self-hosted versions—users are encouraged to download the latest updates from the Looker download page.

Affected Version(s)

Looker Looker-hosted 0 < 24.12.108

Looker Looker-hosted 0 < 24.18.200

Looker Looker-hosted 0 < 25.0.78

References

https://cloud.google.com/support/bulletins#gcp-2025-052

CVSS V4

Score:

7.7

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 24, 2025
Vulnerability Reserved
Nov 5, 2025

Credit

RyotaK of GMO Flatt Security Inc.

JSON