CVE-2026-22743

Name of the Vulnerable Software and Affected Versions Spring AI versions 1.0.0 through 1.0.4 Spring AI versions 1.1.0 through 1.1.3

Description The software contains a Cypher injection issue within the Neo4jVectorFilterExpressionConverter component. When a user-controlled string is used as a filter expression key, the doKey() function incorporates the key into a Cypher property accessor using backticks. The software only removes double quotes but does not escape embedded backticks, which can lead to potential injection attacks. The vulnerable component is Neo4jVectorFilterExpressionConverter. The vulnerable parameter is the filter expression key.

Recommendations Update Spring AI to version 1.0.5 or later. Update Spring AI to version 1.1.4 or later.