MEDIUM 6.5

GHSA-cc4m-mp48-x7qg

Spring AI's support for Anthropic's Skills API used LLM-influenced filenames unsanitized in Path.resolve before writing files to disk

Details

Spring AI's support for Anthropic's Skills API used LLM-influenced filenames unsanitized in Path.resolve before writing files to disk. This could allow a malicious user to write files outside the intended target directory, including restricted directories.

Affected versions: Spring AI: 1.1.0 through 1.1.7

Are you affected?

Enter the version of the package you're using.

Affected packages

Maven / org.springframework.ai:spring-ai-anthropic

Introduced in: 1.1.0 Fixed in: 1.1.7

Fix # pom.xml: bump <version>1.1.7</version> for org.springframework.ai:spring-ai-anthropic

References

https://nvd.nist.gov/vuln/detail/CVE-2026-41863 [ADVISORY]
https://github.com/spring-projects/spring-ai [PACKAGE]
https://spring.io/security/cve-2026-41863 [WEB]