2026-03-18 07:36:30
vmware
PUBLISHED
A critical SQL injection vulnerability in Spring AIs MariaDBFilterExpressionConverter allows attackers to bypass metadata-based access controls and execute arbitrary SQL commands. The vulnerability exists due to missing input sanitization.