Google Application Load Balancer
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Google Application Load Balancer.
By the Year
In 2026 there have been 0 vulnerabilities in Google Application Load Balancer. Last year, in 2025 Application Load Balancer had 1 security vulnerability published. Right now, Application Load Balancer is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 1 | 7.50 |
It may take a day or so for new Application Load Balancer vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Google Application Load Balancer Security Vulnerabilities
CVE-2025-4600: HTTP Req Smuggling in Google Cloud Classic ALB via Chunked Reqs
CVE-2025-4600
7.5 - High
- May 16, 2025
A request smuggling vulnerability existed in the Google Cloud Classic Application Load Balancer due to improper handling of chunked-encoded HTTP requests. This allowed attackers to craft requests that could be misinterpreted by backend servers. The issue was fixed by disallowing stray data after a chunk, and is no longer exploitable. No action is required as Classic Application Load Balancer service after 2025-04-26 is not vulnerable.
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Google Application Load Balancer or by Google? Click the Watch button to subscribe.
