VulnerableCode Package Details - pkg:maven/org.springframework.ai/spring-ai-client-chat@1.0.7

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-9jh9-s213-jbeu	Spring AI's chat memory component contained a problematic default that, when not explicitly overridden, could result in unintended data exposure between users.	CVE-2026-41712 GHSA-q62f-h9x2-gcqc
VCID-eg2m-qj98-rbdr	A malicious user could craft input that is stored in conversation memory and later interpreted by the model in an unintended way. Applications using the affected advisor with user-controlled input may be susceptible to manipulation of model behavior across conversation turns.	CVE-2026-41713 GHSA-5852-phmh-8fhr

Vulnerability

Summary

Aliases

VCID-9jh9-s213-jbeu

Spring AI's chat memory component contained a problematic default that, when not explicitly overridden, could result in unintended data exposure between users.

CVE-2026-41712
GHSA-q62f-h9x2-gcqc

VCID-eg2m-qj98-rbdr

A malicious user could craft input that is stored in conversation memory and later interpreted by the model in an unintended way. Applications using the affected advisor with user-controlled input may be susceptible to manipulation of model behavior across conversation turns.

CVE-2026-41713
GHSA-5852-phmh-8fhr

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-13T06:30:16.617278+00:00	GHSA Importer	Fixing	VCID-9jh9-s213-jbeu	https://github.com/advisories/GHSA-q62f-h9x2-gcqc	38.6.0
2026-06-13T06:30:16.317186+00:00	GHSA Importer	Fixing	VCID-eg2m-qj98-rbdr	https://github.com/advisories/GHSA-5852-phmh-8fhr	38.6.0
2026-06-12T22:29:12.955098+00:00	GitLab Importer	Fixing	VCID-9jh9-s213-jbeu	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.ai/spring-ai-client-chat/CVE-2026-41712.yml	38.6.0
2026-06-12T22:28:09.396387+00:00	GitLab Importer	Fixing	VCID-eg2m-qj98-rbdr	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.ai/spring-ai-client-chat/CVE-2026-41713.yml	38.6.0
2026-06-12T07:52:08.339997+00:00	GithubOSV Importer	Fixing	VCID-9jh9-s213-jbeu	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/05/GHSA-q62f-h9x2-gcqc/GHSA-q62f-h9x2-gcqc.json	38.6.0
2026-06-12T07:51:03.304948+00:00	GithubOSV Importer	Fixing	VCID-eg2m-qj98-rbdr	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/05/GHSA-5852-phmh-8fhr/GHSA-5852-phmh-8fhr.json	38.6.0