SpringAI Critical Vulnerability - 20260604001

Overview

The WASOC has been made aware of a SpEL injection vulnerability exists in SimpleVectorStore when a user-supplied value is used as a filter expression key. A malicious actor could exploit this to execute arbitrary code. Only applications that use SimpleVectorStore and pass user-supplied input as a filter expression key are affected.

What is vulnerable?

Product(s) Affected	Version(s)	CVE	CVSS	Severity
Spring AI	from 1.0.0 before 1.0.5 from 1.1.0 before 1.1.4	CVE-2026-22738	9.8	Critical

What has been observed?

The WASOC has not received any reports of exploitation of this vulnerability on Western Australian Government networks at the time of writing.

Recommendation

The WASOC recommends administrators apply the solutions as per vendor instructions to all affected devices within expected timeframes (refer Patch Management):

• SpringAI: https://spring.io/security/cve-2026-22738

Additional References

• RedHat: https://access.redhat.com/security/cve/cve-2026-22738