CVE-2026-40967 - Spring AI Unvalidated Filter Expression Converter Vulnerability (Code Injection)
CVE ID :CVE-2026-40967 Published : April 28, 2026, 7:16 a.m. | 46 minutes ago Description :In Spring AI, various FilterExpressionConverter implementations accept a filter expression object and translate them to specific vector store query languages. In several cases, keys and values are not pr
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] CVE-2026-7280 - eMPIA Technology|AVACAST - Unquoted Service Path
- [CYBER] Reflections on BlackHat Asia 2026 and Arsenal
- [CYBER] CVE-2026-7279 - eMPIA Technology|AVACAST - DLL Hijacking
- [CYBER] RansomHouse claims breach of a popular Cybersecurity Vendor, possibly Barracuda Networks
- [CYBER] CVE-2026-7264 - SourceCodester Pizzafy Ecommerce System ajax.php get_cart_items sql injection
- [CYBER] CVE-2026-41636 - Apache Thrift: Node.js skip() recursion