This is a SpEL injection vulnerability in Spring AI's SimpleVectorStore component that occurs when user-supplied values are used as filter expression keys. A remote malicious actor can exploit this flaw to execute arbitrary code on the affected system. Only applications that use SimpleVectorStore and accept user-supplied filter keys are impacted.
Remediation
Update Spring AI to version 1.0.5 or later for the 1.0.x branch, and 1.1.4 or later for the 1.1.x branch. If an immediate update is not possible, restrict untrusted user input to filter expression keys. Disable public access to vulnerable endpoints that use the affected SimpleVectorStore feature.
TopVuln sends digest emails with high-risk CVE picks across multiple authoritative sources—curated with EPSS and AI. Choose daily per-stream emails and optional weekly or monthly roundups.