CVE-2026-41713
HIGH8.2EPSS 0.04%Spring AI: Prompt Injection via Memory Poisoning in PromptChatMemoryAdvisor
發布日:2026/5/12修改日:2026/5/18
描述
A malicious user could craft input that is stored in conversation memory and later interpreted by the model in an unintended way. Applications using the affected advisor with user-controlled input may be susceptible to manipulation of model behavior across conversation turns.
受影響套件(1)
- Maven/org.springframework.ai:spring-ai-client-chatfrom 0, < 1.0.7
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH8.2 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N |