TheHackerWire

🟠 CVE-2026-22729 - High (8.6)

A JSONPath injection vulnerability in Spring AI's AbstractFilterExpressionConverter allows authenticated users to bypass metadata-based access controls through crafted filter expressions. User-controlled input passed to FilterExpressionBuilder is ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-22729/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

Mar 18 at 10:00amCVE Bot