Skip to content

Commit f3334b1

Browse files
advisory-database[bot]advisory-database[bot]
committed
Publish Advisories
GHSA-7cj7-rcw6-p68v GHSA-mhrg-94vw-45c5 GHSA-7cj7-rcw6-p68v GHSA-mhrg-94vw-45c5
1 parent 7077c1d commit f3334b1

4 files changed

Lines changed: 185 additions & 70 deletions

File tree

advisories/github-reviewed/2026/03/GHSA-7cj7-rcw6-p68v/GHSA-7cj7-rcw6-p68v.json

Lines changed: 93 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,93 @@
1+
{
2+
"schema_version": "1.4.0",
3+
"id": "GHSA-7cj7-rcw6-p68v",
4+
"modified": "2026-03-29T15:35:08Z",
5+
"published": "2026-03-27T06:31:43Z",
6+
"aliases": [
7+
"CVE-2026-22743"
8+
],
9+
"summary": "Spring AI has a Cypher Injection vulnerability in Neo4jVectorFilterExpressionConverter",
10+
"details": "Spring AI's spring-ai-neo4j-store contains a Cypher injection vulnerability in Neo4jVectorFilterExpressionConverter. When a user-controlled string is passed as a filter expression key in Neo4jVectorFilterExpressionConverter of spring-ai-neo4j-store, doKey() embeds the key into a backtick-delimited Cypher property accessor (node.`metadata.`) after stripping only double quotes, without escaping embedded backticks. This issue affects Spring AI: from 1.0.0 before 1.0.5, from 1.1.0 before 1.1.4.",
11+
"severity": [
12+
{
13+
"type": "CVSS_V3",
14+
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
15+
}
16+
],
17+
"affected": [
18+
{
19+
"package": {
20+
"ecosystem": "Maven",
21+
"name": "org.springframework.ai:spring-ai-neo4j-store"
22+
},
23+
"ranges": [
24+
{
25+
"type": "ECOSYSTEM",
26+
"events": [
27+
{
28+
"introduced": "1.0.0-M5"
29+
},
30+
{
31+
"fixed": "1.0.5"
32+
}
33+
]
34+
}
35+
]
36+
},
37+
{
38+
"package": {
39+
"ecosystem": "Maven",
40+
"name": "org.springframework.ai:spring-ai-neo4j-store"
41+
},
42+
"ranges": [
43+
{
44+
"type": "ECOSYSTEM",
45+
"events": [
46+
{
47+
"introduced": "1.1.0-M1"
48+
},
49+
{
50+
"fixed": "1.1.4"
51+
}
52+
]
53+
}
54+
]
55+
}
56+
],
57+
"references": [
58+
{
59+
"type": "ADVISORY",
60+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-22743"
61+
},
62+
{
63+
"type": "WEB",
64+
"url": "https://github.com/spring-projects/spring-ai/commit/3a46c7dd00e4adc17a132b9438149bde94da244f"
65+
},
66+
{
67+
"type": "PACKAGE",
68+
"url": "https://github.com/spring-projects/spring-ai"
69+
},
70+
{
71+
"type": "WEB",
72+
"url": "https://github.com/spring-projects/spring-ai/releases/tag/v1.0.5"
73+
},
74+
{
75+
"type": "WEB",
76+
"url": "https://github.com/spring-projects/spring-ai/releases/tag/v1.1.4"
77+
},
78+
{
79+
"type": "WEB",
80+
"url": "https://spring.io/security/cve-2026-22743"
81+
}
82+
],
83+
"database_specific": {
84+
"cwe_ids": [
85+
"CWE-89",
86+
"CWE-943"
87+
],
88+
"severity": "HIGH",
89+
"github_reviewed": true,
90+
"github_reviewed_at": "2026-03-29T15:35:08Z",
91+
"nvd_published_at": "2026-03-27T06:16:37Z"
92+
}
93+
}

advisories/github-reviewed/2026/03/GHSA-mhrg-94vw-45c5/GHSA-mhrg-94vw-45c5.json

Lines changed: 92 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,92 @@
1+
{
2+
"schema_version": "1.4.0",
3+
"id": "GHSA-mhrg-94vw-45c5",
4+
"modified": "2026-03-29T15:33:25Z",
5+
"published": "2026-03-27T06:31:43Z",
6+
"aliases": [
7+
"CVE-2026-22742"
8+
],
9+
"summary": "Spring AI: Insufficient Validation causes SSRF when processing multimodal messages with user-supplied URLs",
10+
"details": "Spring AI's spring-ai-bedrock-converse contains a Server-Side Request Forgery (SSRF) vulnerability in BedrockProxyChatModel when processing multimodal messages that include user-supplied media URLs. Insufficient validation of those URLs allows an attacker to induce the server to issue HTTP requests to unintended internal or external destinations.\n\nThis issue affects Spring AI: from 1.0.0 before 1.0.5, from 1.1.0 before 1.1.4.",
11+
"severity": [
12+
{
13+
"type": "CVSS_V3",
14+
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N"
15+
}
16+
],
17+
"affected": [
18+
{
19+
"package": {
20+
"ecosystem": "Maven",
21+
"name": "org.springframework.ai:spring-ai-bedrock-converse"
22+
},
23+
"ranges": [
24+
{
25+
"type": "ECOSYSTEM",
26+
"events": [
27+
{
28+
"introduced": "1.0.0-M5"
29+
},
30+
{
31+
"fixed": "1.0.5"
32+
}
33+
]
34+
}
35+
]
36+
},
37+
{
38+
"package": {
39+
"ecosystem": "Maven",
40+
"name": "org.springframework.ai:spring-ai-bedrock-converse"
41+
},
42+
"ranges": [
43+
{
44+
"type": "ECOSYSTEM",
45+
"events": [
46+
{
47+
"introduced": "1.1.0-M1"
48+
},
49+
{
50+
"fixed": "1.1.4"
51+
}
52+
]
53+
}
54+
]
55+
}
56+
],
57+
"references": [
58+
{
59+
"type": "ADVISORY",
60+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-22742"
61+
},
62+
{
63+
"type": "WEB",
64+
"url": "https://github.com/spring-projects/spring-ai/commit/a7d3223bc11a010b93fbc40a17fa9b68c52a8118"
65+
},
66+
{
67+
"type": "PACKAGE",
68+
"url": "https://github.com/spring-projects/spring-ai"
69+
},
70+
{
71+
"type": "WEB",
72+
"url": "https://github.com/spring-projects/spring-ai/releases/tag/v1.0.5"
73+
},
74+
{
75+
"type": "WEB",
76+
"url": "https://github.com/spring-projects/spring-ai/releases/tag/v1.1.4"
77+
},
78+
{
79+
"type": "WEB",
80+
"url": "https://spring.io/security/cve-2026-22742"
81+
}
82+
],
83+
"database_specific": {
84+
"cwe_ids": [
85+
"CWE-918"
86+
],
87+
"severity": "HIGH",
88+
"github_reviewed": true,
89+
"github_reviewed_at": "2026-03-29T15:33:25Z",
90+
"nvd_published_at": "2026-03-27T06:16:37Z"
91+
}
92+
}

advisories/unreviewed/2026/03/GHSA-7cj7-rcw6-p68v/GHSA-7cj7-rcw6-p68v.json

Lines changed: 0 additions & 36 deletions
This file was deleted.

advisories/unreviewed/2026/03/GHSA-mhrg-94vw-45c5/GHSA-mhrg-94vw-45c5.json

Lines changed: 0 additions & 34 deletions
This file was deleted.

0 commit comments

Comments
 (0)