In Spring AI, various FilterExpressionConverter implementations accept a filter expression object and translate them to specific vector store query languages. In several cases, keys and values are not properly escaped, leading to the ability to alter the query. Affected versions: Spring AI: 1.0.0 - 1.0.5 (fixed in 1.0.6), 1.1.0 - 1.1.4 (fixed in 1.1.5)
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:LVMware Spring Ai
APPVmware1.0.0 – 1.0.6 (bez)1.1.0 – 1.1.5 (bez)
Related vulnerabilities
SpEL injection w Spring AI SimpleVectorStore umożliwia RCE
A malicious user could craft input that is stored in conversation memory and later interpreted by the model in...
Spring AI's chat memory component contained a problematic default that, when not explicitly overridden, could ...
Spring AI's MilvusVectorStore#doDelete(List) implementation is vulnerable to filter-expression injection via u...
SQL injection vulnerability in Spring AI's `CosmosDBVectorStore` allows attackers to execute arbitrary SQL que...