CVE-2026-41863 | THREATINT

Description

Spring AI's support for Anthropic's Skills API used LLM-influenced filenames unsanitized in Path.resolve before writing files to disk. This could allow a malicious user to write files outside the intended target directory, including restricted directories. Affected versions: Spring AI: 1.1.0 through 1.1.x

PUBLISHED Reserved 2026-04-22 | Published 2026-05-25 | Updated 2026-05-26 | Assigner vmware

MEDIUM: 6.5CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Problem types

CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Product status

Default status

unaffected

1.1.0 (custom)

affected

References

spring.io/security/cve-2026-41863

cve.org (CVE-2026-41863)

nvd.nist.gov (CVE-2026-41863)

Download JSON