24 matches found
CVE-2026-22744
In RedisFilterExpressionConverter of spring-ai-redis-store, when a user-controlled string is passed as a filter value for a TAG field, stringValue inserts the value directly into the @field:VALUE RediSearch TAG block without escaping characters.This issue affects Spring AI: from 1.0.0 before 1.0....
EUVD-2026-16541
In RedisFilterExpressionConverter of spring-ai-redis-store, when a user-controlled string is passed as a filter value for a TAG field, stringValue inserts the value directly into the @field:VALUE RediSearch TAG block without escaping characters.This issue affects Spring AI: from 1.0.0 before 1.0....
GHSA-44F4-GVWJ-6QG3 Spring AI Redis Store has TAG Field Query Injection Through Improper Neutralization of Special Characters
In RedisFilterExpressionConverter of spring-ai-redis-store, when a user-controlled string is passed as a filter value for a TAG field, stringValue inserts the value directly into the @field:VALUE RediSearch TAG block without escaping characters. This issue affects Spring AI: from 1.0.0 before...
CVE-2026-22744
In RedisFilterExpressionConverter of spring-ai-redis-store, when a user-controlled string is passed as a filter value for a TAG field, stringValue inserts the value directly into the @field:VALUE RediSearch TAG block without escaping characters.This issue affects Spring AI: from 1.0.0 before 1.0....
CVE-2026-22744
The CVE refers to Spring AI’s Redis Store (spring-ai-redis-store) in RedisFilterExpressionConverter. A user-controlled string used as a filter value for a TAG field is inserted directly into the RediSearch TAG block (@field:{VALUE}) without escaping. AFFECTED VERSIONS: Spring AI 1.0.0 up to, but ...
PT-2026-28327
Name of the Vulnerable Software and Affected Versions Spring AI versions 1.0.0 through 1.0.4 Spring AI versions 1.1.0 through 1.1.3 Description A flaw exists in the RedisFilterExpressionConverter component of spring-ai-redis-store. When a user-controlled string is provided as a filter value for a...
CVE-2026-27022
@langchain/langgraph-checkpoint-redis is the Redis checkpoint and store implementation for LangGraph. A query injection vulnerability exists in the @langchain/langgraph-checkpoint-redis package's filter handling. The RedisSaver and ShallowRedisSaver classes construct RediSearch queries by directl...
CVE-2026-27022 RediSearch Query Injection in @langchain/langgraph-checkpoint-redis
@langchain/langgraph-checkpoint-redis is the Redis checkpoint and store implementation for LangGraph. A query injection vulnerability exists in the @langchain/langgraph-checkpoint-redis package's filter handling. The RedisSaver and ShallowRedisSaver classes construct RediSearch queries by directl...
CVE-2026-27022 RediSearch Query Injection in @langchain/langgraph-checkpoint-redis
@langchain/langgraph-checkpoint-redis is the Redis checkpoint and store implementation for LangGraph. A query injection vulnerability exists in the @langchain/langgraph-checkpoint-redis package's filter handling. The RedisSaver and ShallowRedisSaver classes construct RediSearch queries by directl...
CVE-2026-27022
CVE-2026-27022 affects the LangGraph Redis checkpoint implementation in the package @langchain/langgraph-checkpoint-redis. The RedisSaver and ShallowRedisSaver construct RediSearch queries by directly interpolating user-provided filter keys and values without proper escaping, allowing injection o...
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
Overview @langchain/langgraph-checkpoint-redis is a Redis checkpoint and store implementation for LangGraph Affected versions of this package are vulnerable to Improper Neutralization of Special Elements in Output Used by a Downstream Component 'Injection' via the list method in the RedisSaver an...
GHSA-5MX2-W598-339M RediSearch Query Injection in @langchain/langgraph-checkpoint-redis
Summary A query injection vulnerability exists in the @langchain/langgraph-checkpoint-redis package's filter handling. The RedisSaver and ShallowRedisSaver classes construct RediSearch queries by directly interpolating user-provided filter keys and values without proper escaping. RediSearch has...
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
Overview @langchain/langgraph-checkpoint-mongodb is a LangGraph Affected versions of this package are vulnerable to Improper Neutralization of Special Elements in Output Used by a Downstream Component 'Injection' via the list method in the RedisSaver and ShallowRedisSaver classes when...
RediSearch Query Injection in @langchain/langgraph-checkpoint-redis
Summary A query injection vulnerability exists in the @langchain/langgraph-checkpoint-redis package's filter handling. The RedisSaver and ShallowRedisSaver classes construct RediSearch queries by directly interpolating user-provided filter keys and values without proper escaping. RediSearch has...
PT-2026-21300
Name of the Vulnerable Software and Affected Versions @langchain/langgraph-checkpoint-redis versions prior to 1.0.2 Description A query injection issue exists in the RedisSaver and ShallowRedisSaver classes of the @langchain/langgraph-checkpoint-redis package. These classes build RediSearch queri...
EUVD-2024-45794
Malicious code in bioql PyPI...
CVE-2024-51737
RediSearch is a Redis module that provides querying, secondary indexing, and full-text search for Redis. An authenticated redis user executing FT.SEARCH or FT.AGGREGATE with a specially crafted LIMIT command argument, or FT.SEARCH with a specially crafted KNN command argument, can trigger an...
UBUNTU-CVE-2024-51737
RediSearch is a Redis module that provides querying, secondary indexing, and full-text search for Redis. An authenticated redis user executing FT.SEARCH or FT.AGGREGATE with a specially crafted LIMIT command argument, or FT.SEARCH with a specially crafted KNN command argument, can trigger an...
CVE-2024-51737
CVE-2024-51737 affects RediSearch (Redis module) where an authenticated Redis user issuing FT.SEARCH/FT.AGGREGATE with a crafted LIMIT or FT.SEARCH with a crafted KNN argument can trigger an integer overflow, causing heap overflow and potential remote code execution. The issue is fixed in Redis m...
CVE-2024-51737 RediSearch Integer Overflow with LIMIT or KNN arguments can lead to RCE
RediSearch is a Redis module that provides querying, secondary indexing, and full-text search for Redis. An authenticated redis user executing FT.SEARCH or FT.AGGREGATE with a specially crafted LIMIT command argument, or FT.SEARCH with a specially crafted KNN command argument, can trigger an...