Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.6
CVE-2026-41705: Spring AI: Unsanitized Document IDs Allow Data Deletion
CVE-2026-41705
GHSA-v632-2m87-7469
Summary
An attacker can delete data in Spring AI's database by manipulating document IDs. This is a security risk because sensitive information can be removed. To fix this, upgrade to version 1.0.7 or later for Spring AI 1.0.x, or to version 1.1.6 or later for Spring AI 1.1.x.
What to do
- Update org.springframework.ai:spring-ai-milvus-store to version 1.0.7.
- Update org.springframework.ai:spring-ai-milvus-store to version 1.1.6.
- Update org.springframework.ai:spring-ai-typesense-store to version 1.0.7.
- Update org.springframework.ai:spring-ai-typesense-store to version 1.1.6.
Affected software
| Ecosystem | Vendor | Product | Affected versions |
|---|---|---|---|
| maven | – | org.springframework.ai:spring-ai-milvus-store |
>= 1.0.0, < 1.0.7 >= 1.1.0, < 1.1.6 Fix: upgrade to 1.0.7
|
| maven | – | org.springframework.ai:spring-ai-typesense-store |
>= 1.0.0, < 1.0.7 >= 1.1.0, < 1.1.6 Fix: upgrade to 1.0.7
|
Original title
Spring AI's MilvusVectorStore#doDelete(List) implementation is vulnerable to filter-expression injection via unsanitized document IDs
Original description
Spring AI's MilvusVectorStore#doDelete(List) implementation is vulnerable to filter-expression injection via unsanitized document IDs.
Spring AI 1.0.x: affected from 1.0.0 through latest 1.0.x; upgrade to 1.0.7 or greater. Spring AI 1.1.x: affected from 1.1.0 through latest 1.1.x; upgrade to 1.1.6 or greater.
Spring AI 1.0.x: affected from 1.0.0 through latest 1.0.x; upgrade to 1.0.7 or greater. Spring AI 1.1.x: affected from 1.1.0 through latest 1.1.x; upgrade to 1.1.6 or greater.
nvd CVSS3.1
8.6
Vulnerability type
CWE-917
Published: 9 May 2026 · Updated: 28 May 2026 · First seen: 9 May 2026