CVE-2026-40966

Summary

Spring AI's VectorStoreChatMemoryAdvisor conversation scoping can lead to cross-tenant memory exfiltration

Severity

medium

EPSS

0.2% (p14)

Also known as

GHSA-v6x6-pjxw-3pv2

Published

2026-04-28

References

• https://nvd.nist.gov/vuln/detail/CVE-2026-40966
• https://github.com/spring-projects/spring-ai
• https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator?version=3.1&vector=AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Related advisories

• CVE-2026-41712 — high · Maven/org.springframework.ai:spring-ai-advisors-vector-store

Is your project exposed to this? Stateward checks every dependency on every pull request and flags it only if your code actually reaches it.

Summarize with AI

ChatGPTClaudePerplexity