MEDIUM | APRIL 28, 2026 | CVE-2026-40968
Description When an authenticated user is denied access to a gRPC method, their authenticated identity remains bound to the gRPC worker thread and can be inherited by a subsequent unauthenticated request on the same thread. This may allow the subsequent user…
LOW | APRIL 28, 2026 | CVE-2026-40969
Description The raw message of every server-side AuthenticationException is returned to the unauthenticated remote caller in the gRPC status description. This allows an attacker to obtain information about the authentication failure, which may be useful for…
MODERATE | APRIL 27, 2026 | CVE-2026-40966
Description In Spring AI, an attacker can bypass conversation isolation and exfiltrate sensitive memory from other users’ chat histories, including secrets and credentials, by injecting filter logic through conversationId. Only applications that use…
HIGH | APRIL 27, 2026 | CVE-2026-40967
Description In Spring AI, various FilterExpressionConverter implementations accept a filter expression object and translate them to specific vector store query languages. In several cases, keys and values are not properly escaped, leading to the ability to…
HIGH | APRIL 27, 2026 | CVE-2026-40978
Description SQL injection vulnerability in Spring AI's CosmosDBVectorStore allows attackers to execute arbitrary SQL queries via crafted document IDs. Only applications that use CosmosDBVectorStore and pass user-supplied input as document ids are affected…
MODERATE | APRIL 27, 2026 | CVE-2026-40979
Description In Spring AI, having access to a shared environment can expose the ONNX model used by the application. Only applications that use TransformersEmbeddingModel and have the cache enabled, using the default location, are affected. Affected Spring…
MODERATE | APRIL 27, 2026 | CVE-2026-40980
Description In Spring AI, a malicious PDF file can be crafted that triggers the allocation of unreasonable amounts of memory when handled by ForkPDFLayoutTextStripper. Only applications that use ForkPDFLayoutTextStripper and pass user-supplied input to…
MEDIUM | APRIL 23, 2026 | CVE-2026-40970
Description When configured to use an SSL bundle, Spring Boot's Elasticsearch auto-configuration does
not perform hostname verification when connecting to the Elasticsearch server. Affected Spring Products and Versions Spring Boot: 4.0.0 - 4.0.5 Mitigation…
MEDIUM | APRIL 23, 2026 | CVE-2026-40971
Description When configured to use an SSL bundle, Spring Boot's RabbitMQ auto-configuration does
not perform hostname verification when connecting to the RabbitMQ broker. Affected Spring Products and Versions Spring Boot: 4.0.0 - 4.0.5 3.5.0 - 3.5.1…
HIGH | APRIL 23, 2026 | CVE-2026-40972
Description An attacker on the same network as the remote application may be able to utilize a timing
attack to discover information about the remote secret. In extreme circumstances this
could result in the attacker determining the secret and uploading…
