CVE-2026-22738

Name of the Vulnerable Software and Affected Versions Spring AI versions 1.0.0 through 1.0.4 and 1.1.0 through 1.1.3

Description Spring AI's SimpleVectorStore component contains a SpEL injection flaw. This occurs when user-provided input is used as a filter expression key. A malicious actor can leverage this to execute arbitrary code. The issue impacts applications utilizing SimpleVectorStore and accepting user input for filter expression keys. Multiple sources confirm the potential for unauthenticated Remote Code Execution (RCE).

Recommendations Update Spring AI to version 1.0.5 or 1.1.4 to address this issue.