Cypher Injection Vulnerability in Spring AI's Neo4j Store
CVE-2026-22743

7.5HIGH

Key Information:

Vendor: Spring
Status: Spring Ai
Vendor: CVE Published:; 27 March 2026

What is CVE-2026-22743?

The spring-ai-neo4j-store component in Spring AI has a vulnerability that arises from improper handling of user-supplied strings. Specifically, the Neo4jVectorFilterExpressionConverter fails to escape embedded backticks when embedding filter keys into Cypher property accessors. This oversight allows attackers to inject malicious Cypher code via user-controlled filter expressions, potentially leading to unauthorized data access or manipulation.

Affected Version(s)

Spring AI 1.0.0 < 1.0.5

Spring AI 1.1.0 < 1.1.4

References

https://spring.io/security/cve-2026-22743

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 27, 2026
Vulnerability Reserved
Jan 9, 2026

CVE-2026-22743 Data

JSON