CVE 8.6 HIGH

CVE-2026-40967_CVE-2026-40967

April 28, 2026 invoker category_cve

8.6 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

Description

In Spring AI, various FilterExpressionConverter implementations accept a filter expression object and translate them to specific vector store query languages. In several cases, keys and values are not properly escaped, leading to the ability to alter the query.

Affected versions:
Spring AI: 1.0.0 - 1.0.5 (fixed in 1.0.6), 1.1.0 - 1.1.4 (fixed in 1.1.5)

AI Analysis

Unescaped keys and values in filter expressions allow query alteration

Basic Information

ID CVE-2026-40967

Source vmware

Published Apr 28, 2026 at 06:03

Modified Apr 28, 2026 at 07:06

Affected Product

Vendor Spring

Product Spring AI

Version 1.0.0

Affected Versions Spring Spring AI 1.0.0
Spring Spring AI 1.1.0

CWE Classification

CWE-94

AI Assessment

AI Score 8.6 / 10

AI Severity High

Vendor Spring

Product Spring AI

Version 1.0.0 - 1.0.5, 1.1.0 - 1.1.4

References

spring.io /security/cve-2026-40967

{
    "lastseen": "",
    "description": "In Spring AI, various FilterExpressionConverter implementations accept a filter expression object and translate them to specific vector store query languages. In several cases, keys and values are not properly escaped, leading to the ability to alter the query.\n\nAffected versions:\nSpring AI: 1.0.0 - 1.0.5 (fixed in 1.0.6), 1.1.0 - 1.1.4 (fixed in 1.1.5)",
    "published": "2026-04-28T06:03:51.857Z",
    "modified": "2026-04-28T07:06:12.153Z",
    "type": "cve",
    "title": "CVE-2026-40967",
    "source": "vmware",
    "references": "https://spring.io/security/cve-2026-40967",
    "id": "CVE-2026-40967",
    "bulletinFamily": "",
    "cwe": [
        "CWE-94"
    ],
    "cvelist": null,
    "sourceData": "Spring Spring AI 1.0.0\nSpring Spring AI 1.1.0",
    "sourceHref": "",
    "cvss": {
        "score": 8.6,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Spring AI",
    "version": "1.0.0",
    "vendor": "Spring",
    "ai_description": "Unescaped keys and values in filter expressions allow query alteration",
    "ai_severity": "High",
    "ai_vendor": "Spring",
    "ai_product": "Spring AI",
    "ai_version": "1.0.0 - 1.0.5, 1.1.0 - 1.1.4",
    "ai_score": 8.6
}

💭 Join the Security Discussion ❌ Cancel Reply