CVE-2026-40966 | Vmware Spring AI up to 1.0.5/1.1.4 Conversation access control

A vulnerability identified as critical has been detected in Vmware Spring AI up to 1.0.5/1.1.4. This issue affects some unknown processing of the component Conversation Handler. This manipulation causes improper access controls.

This vulnerability is registered as CVE-2026-40966. Remote exploitation of the attack is possible. No exploit is available.

You should upgrade the affected component.VulDB Recent EntriesRead More