Vulnerability Description
A Generation of Error Message Containing Sensitive Information vulnerability in the Materialized View Refresh mechanism in Google BigQuery on Google Cloud Platform allows an authenticated user to potentially disclose sensitive data using a crafted materialized view that triggers a runtime error during the refresh process. This vulnerability was patched on 29 January 2026, and no customer action is needed.
Related Weaknesses (CWE)
References
FAQ
What is CVE-2026-3259?
CVE-2026-3259 is a documented vulnerability. A Generation of Error Message Containing Sensitive Information vulnerability in the Materialized View Refresh mechanism in Google BigQuery on Google Cloud Platform allows an authenticated user to pote...
How severe is CVE-2026-3259?
CVSS scoring is not yet available for CVE-2026-3259. Check NVD for updates.
Is there a patch for CVE-2026-3259?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.