◈ AI Security Intelligence ← All terms
Attack  ·  Glossary

Vector Store Injection

Definition
An attack that injects malicious data into the semantic search index (vector store) that powers RAG systems. Because vector databases search by meaning rather than exact keywords, an attacker can craft poisoned data that appears relevant to legitimate queries and tricks the AI into retrieving it.
Why it matters
Vector stores are the authoritative knowledge base for RAG pipelines; if they are poisoned, the AI will generate hallucinations or leak secrets that appear legitimate because they match the semantic context of the user's question.
Demonstrated by recent findings
Spring AI Vector Stores — Special-Character Injection Enables Arbitrary Query Execution in Elasticsearch, OpenSearch, and GemFireChromaDB Rust IDOR Cross-Tenant Data Access — CVE-2026-8828, CVSS 8.8 HIGH — No Patch Confirmed
References
OWASP Top 10 for LLM Applications
Track this in the live feed See how this plays out in real AI security and governance developments.
Open the feed →