A critical SQL injection vulnerability in Spring AI's MariaDBFilterExpressionConverter allows attackers to bypass metadata-based access controls and execute arbitrary SQL commands. The vulnerability

Description

A critical SQL injection vulnerability in Spring AI's MariaDBFilterExpressionConverter allows attackers to bypass metadata-based access controls and execute arbitrary SQL commands. The vulnerability exists due to missing input sanitization.

Affected Products

Vendor	Product	Versions
vmware	spring_ai	< 1.0.4, < 1.1.3

References

https://spring.io/security/cve-2026-22730(Vendor Advisory)

CVSS 3.18.8 HIGH

VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA KEV❌ No

Actively exploited❌ No

Patch available

1.0.41.1.3

CWECWE-89

PublishedMar 18, 2026

Last enriched6d ago

Trending Score0

Source articles0

Independent0

Info Completeness9/14

Missing: epss, kev, exploit, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

CRITICALPRE-CVE

Critical vulnerabilities in VMware Tanzu MySQL for Kubernetes prior to version 2.0.2

Trending: 30

CRITICALCVE-2026-22732

Under Some Conditions Spring Security HTTP Headers Are not Written

MEDIUMCVE-2026-22721

VMware Aria Operations contains a privilege escalation vulnerability. A malicious actor with privileges in vCenter to access Aria Operations may leverage this vulnerability to obtain administrative ac

HIGHCVE-2026-22720

VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with privileges to create custom benchmarks may be able to inject script to perform administrative action

HIGHCVE-2026-22719EXPKEV

VMware Aria Operations contains a command injection vulnerability. A malicious unauthenticated actor may exploit this issue to execute arbitrary commands which may lead to remote code execution in VMw

Pin to Dashboard

Verification

State: verified

Confidence: 100%

Vulnerability Timeline

CVE Published

Mar 18, 2026

Patch Available

Apr 1, 2026

Discovered by ZDM

Apr 1, 2026