A vulnerability was found in VMware Spring AI up to 1.0.3/1.1.2 . It has been rated as problematic . Affected by this vulnerability is an unknown functionality of the component AbstractFilterExpressionConverter . This manipulation causes injection. This vulnerability is registered as CVE-2026-22729 . Remote exploitation of the attack is possible. No exploit is available. Upgrading the affected component is advised.