CVE-2026-22730

Name of the Vulnerable Software and Affected Versions Spring AI versions prior to 1.0.4 Spring AI versions prior to 1.1.3

Description A critical SQL injection flaw exists in Spring AI's MariaDBFilterExpressionConverter component. This issue allows attackers to bypass metadata-based access controls and execute arbitrary SQL commands. The root cause is a lack of input sanitization when processing user-provided filter expressions, leading to the construction of vulnerable SQL queries. The vulnerability affects applications utilizing spring-ai-vector-store or spring-ai-mariadb-store with user-controlled filter expressions. The vulnerability allows attackers to manipulate database queries without authentication.

Recommendations For Spring AI versions prior to 1.0.4, upgrade to version 1.0.4 or later. For Spring AI versions prior to 1.1.3, upgrade to version 1.1.3 or later.