CVE-2026-47835 | THREATINT

Description

In Spring AI Vector Stores, special characters could be used to force the execution of arbitrary queries in Elasticsearch, OpenSearch, and GemFire VectorDB. Affected components: spring-ai-elasticsearch-store, spring-ai-opensearch-store, spring-ai-gemfire-store. Affected versions: Spring AI 1.0.0 through 1.0.x (fix 1.0.9). Spring AI 1.1.0 through 1.1.x (fix 1.1.8).

PUBLISHED Reserved 2026-05-20 | Published 2026-06-15 | Updated 2026-06-15 | Assigner vmware

HIGH: 8.6CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

Problem types

CWE-943: Improper Neutralization of Special Elements in Data Query Logic

Product status

Default status

unaffected

1.0.0 (custom) before 1.0.9

affected

1.1.0 (custom) before 1.1.8

affected

References

spring.io/security/cve-2026-47835

cve.org (CVE-2026-47835)

nvd.nist.gov (CVE-2026-47835)

Download JSON