A vulnerability was found in Vmware Spring AI up to 1.1.6 . It has been classified as critical . Affected by this vulnerability is the function Path.resolve of the component Anthropic Skills API Handler . Performing a manipulation results in path traversal. This vulnerability is known as CVE-2026-41863 . Remote exploitation of the attack is possible. No exploit is available. Upgrading the affected component is recommended.