CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnerabilities for packages: pulumi, wazuh-dashboard, wazuh-dashboard-fips, vitess, prism, opensearch-dashboards, saf, lerna, opensearch-dashboards-fips...

5.8AI score

Exploits0

Chainguard•added 2026/06/17 8:24 p.m.•8 views

CVE-2026-49982 vulnerabilities

Vulnerabilities for packages: pulumi, wazuh-dashboard, wazuh-dashboard-fips, vitess, prism, opensearch-dashboards, saf, lerna, opensearch-dashboards-fips...

8.2CVSS5.8AI score0.00496EPSS

Exploits1

Wolfi•added 2026/06/17 8:23 p.m.•7 views

CVE-2026-49982 vulnerabilities

Vulnerabilities for packages: saf, prism, opensearch-dashboards, vitess, lerna, pulumi...

8.2CVSS5.8AI score0.00496EPSS

Exploits1

Wolfi•added 2026/06/17 8:23 p.m.•7 views

GHSA-VXR8-FQ34-VVX9 vulnerabilities

Vulnerabilities for packages: langfuse, opensearch-dashboards...

5.8AI score

Exploits0

Wolfi•added 2026/06/17 8:23 p.m.•7 views

GHSA-7C78-JF6Q-G5CM vulnerabilities

Vulnerabilities for packages: saf, prism, opensearch-dashboards, vitess, lerna, pulumi...

5.8AI score

Exploits0

EUVD•added 2026/06/15 9:30 p.m.•7 views

EUVD-2026-36796

In Spring AI Vector Stores, special characters could be used to force the execution of arbitrary queries in Elasticsearch, OpenSearch, and GemFire VectorDB. Affected components: spring-ai-elasticsearch-store, spring-ai-opensearch-store, spring-ai-gemfire-store. Affected versions: Spring AI 1.0.0...

8.6CVSS5.6AI score0.00254EPSS

Exploits0References2

NVD•added 2026/06/15 8:16 p.m.•6 views

CVE-2026-47835

8.6CVSS0.00254EPSS

Exploits0References1

CVE•added 2026/06/15 6:54 p.m.•14 views

CVE-2026-47835

In Spring AI Vector Stores, the vulnerability arises from improper handling of special characters that could lead to arbitrary query execution in Elasticsearch, OpenSearch, and GemFire VectorDB. Affected components are spring-ai-elasticsearch-store, spring-ai-opensearch-store, and spring-ai-gemfi...

8.6CVSS5.6AI score0.00254EPSS

Exploits0References1Affected Software1

Cvelist•added 2026/06/15 6:54 p.m.•43 views

CVE-2026-47835 Spring AI vector store metadata filtering to handle special characters in Elasticsearch, OpenSearch, and GemFire Vector Stores

8.6CVSS0.00254EPSS

Exploits0References1

Vulnrichment•added 2026/06/15 6:54 p.m.•5 views

CVE-2026-47835 Spring AI vector store metadata filtering to handle special characters in Elasticsearch, OpenSearch, and GemFire Vector Stores

8.6CVSS5.7AI score0.00254EPSS

Exploits0References1

Positive Technologies•added 2026/06/15 12:0 a.m.•11 views

PT-2026-49305

Name of the Vulnerable Software and Affected Versions Spring AI versions prior to 1.0.9 Spring AI versions prior to 1.1.8 Description Special characters can be used to force the execution of arbitrary queries in Elasticsearch, OpenSearch, and GemFire VectorDB. This issue affects the...

8.6CVSS6.1AI score0.00254EPSS

Exploits0References4

Spring Security Advisories•added 2026/06/12 12:0 a.m.•7 views

CVE-2026-47835: Spring AI vector store metadata filtering to handle special characters in Elasticsearch, OpenSearch, and GemFire Vector Stores

In Spring AI Vector Stores, special characters could be used to force the execution of arbitrary queries in Elasticsearch, OpenSearch, and GemFire VectorDB...

8.6CVSS5.6AI score0.00254EPSS

Exploits0References1Affected Software1

Wolfi•added 2026/06/11 1:48 a.m.•9 views

GHSA-777C-7FJR-54VF vulnerabilities

Vulnerabilities for packages: nextcloud-server...

5.8AI score

Exploits0

Wolfi•added 2026/06/11 1:48 a.m.•6 views

GHSA-J5F8-GRM9-P9FC vulnerabilities

Vulnerabilities for packages: nextcloud-server...

5.8AI score

Exploits0