CVE-2026-40978EXPLOITEDPATCHED

spring · spring ai

CVE-2026-40978: SQL injection vulnerability in Spring AI's `CosmosDBVectorStore` allows attackers to execute arbitrary SQL queries via c

Description

SQL injection vulnerability in Spring AI's `CosmosDBVectorStore` allows attackers to execute arbitrary SQL queries via crafted document IDs. Affected versions: Spring AI: 1.0.0 - 1.0.5 (fixed in 1.0.6), 1.1.0 - 1.1.4 (fixed in 1.1.5)

Affected Products

Vendor	Product	Versions
spring	spring ai	1.0.0, 1.1.0

References

https://spring.io/security/cve-2026-40978

Related News (2 articles)

Tier C

VulDB1d ago

CVE-2026-40978 | Vmware Spring AI up to 1.0.5/1.1.4 Document ID CosmosDBVectorStore sql injection

→ No new info (linked only)

Tier B

CERT-FR1d ago

Multiples vulnérabilités dans Spring (28 avril 2026)

→ No new info (linked only)

CVSS 3.18.8 HIGH

VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA KEV❌ No

Actively exploited✅ Yes

Patch available

1.0.61.1.5

CWECWE-89

PublishedApr 28, 2026

Last enriched1d agov2

Trending Score56

Source articles2

Independent2

Info Completeness9/14

Missing: epss, kev, exploit, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

HIGHCVE-2026-40967EXP

CVE-2026-40967: In Spring AI, various FilterExpressionConverter implementations accept a filter expression object and translate them to

Trending: 63

CRITICALCVE-2026-40976EXP

CVE-2026-40976: In certain circumstances, Spring Boot's default web security is ineffective allowing unauthorized access to all endpoint

Trending: 55

MEDIUMCVE-2026-40966EXP

VectorStoreChatMemoryAdvisor conversation scoping can lead to cross-tenant memory exfiltration

Trending: 47

HIGHCVE-2026-40968EXP

Spring gRPC SecurityContext leaks across requests on authorization failure

Trending: 43

CRITICALCVE-2026-40974EXP

CVE-2026-40974: Spring Boot's Cassandra auto-configuration does not perform hostname verification when establishing an SSL connection to

Trending: 43

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

Apr 28, 2026

Discovered by ZDM

Apr 28, 2026

Updated: severity, activelyExploited

Apr 28, 2026

Actively Exploited

Apr 29, 2026

Patch Available

Apr 29, 2026

Version History

Last enriched 1d ago

v2Tier C1d ago

Updated severity to CRITICAL and corrected exploit availability to false.

severityactivelyExploited

via VulDB

v11d ago

Initial creation