Medium severity6.8NVD Advisory· Published Jan 14, 2026· Updated Apr 15, 2026

CVE-2026-22718

Description

The VSCode extension for Spring CLI are vulnerable to command injection, resulting in command execution on the users machine.

No patches discovered yet.

AI mechanics synthesis has not run for this CVE yet.

No linked articles in our index yet.