CVE-2026-22730

8.8HIGH
게시됨: 3/18/2026업데이트됨: 3/18/2026
NVD에서 보기MITRE에서 보기

설명

A critical SQL injection vulnerability in Spring AI's MariaDBFilterExpressionConverter allows attackers to bypass metadata-based access controls and execute arbitrary SQL commands. The vulnerability exists due to missing input sanitization.

AI 분석AI 기반

참조