A vulnerability in the Vertex AI SDK enables model hijacking and code execution in Google’s infrastructure without project authorization.