How severe is CVE-2026-22730?

CVE-2026-22730 has a CVSS v3 score of 8.8 (HIGH).

CVE-2026-22730

8.8HIGH

Publicado: 3/18/2026Atualizado: 3/18/2026

Descrição

A critical SQL injection vulnerability in Spring AI's MariaDBFilterExpressionConverter allows attackers to bypass metadata-based access controls and execute arbitrary SQL commands. The vulnerability exists due to missing input sanitization.

Análise IADesenvolvido por IA

Referências

https://spring.io/security/cve-2026-22730