Primary

Context

Spring AI LLM-Influenced Filename Vulnerability in Anthropic Skills API Support

Vulnerability

Patched

A vulnerability exists in Spring AI versions 1.1.0 through 1.1.x, specifically in the support for Anthropic's Skills API. The issue arises because LLM-influenced filenames are used unsanitized in the Path.resolve method before files are written to disk. This flaw could enable a malicious user to write files outside the designated target directory, potentially including restricted directories.

Impact

Exploitation of this vulnerability could lead to unauthorized file writing in restricted directories, bypassing intended directory limitations.

Remediation

Users of affected Spring AI versions should upgrade to version 1.1.7.

Added: May 26, 2026, 8:09 PM

Updated: May 26, 2026, 8:09 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.6

remediation

0.0

relevance

9.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.6

remediation

0.0

relevance

9.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Spring AI LLM-Influenced Filename Vulnerability in Anthropic Skills API Support

Vulnerability

Impact

Remediation

Affected Products

Spring AI

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating