2 matches found
org.springframework.ai:spring-ai-starter-vector-store-couchbase (>=1.1.0 <=1.1.4) potentially affected by CVE-2026-40967 via org.springframework.ai:spring-ai-couchbase-store (>=1.1.0-M1 <=1.1.4)
org.springframework.ai:spring-ai-couchbase-store MAVEN version =1.1.0-M1, =1.1.0, =1.1.4 Source cves: CVE-2026-40967 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORKAI-16316423...
Improper Neutralization of Special Elements in Data Query Logic
Overview org.springframework.ai:spring-ai-couchbase-store is a Spring AI Couchbase Vector Store Affected versions of this package are vulnerable to Improper Neutralization of Special Elements in Data Query Logic via the FilterExpressionConverter implementations. An attacker can alter underlying...