Vulnerability in agents project #631
Description
While working on agents project, I identified CVE-2026-26030 impacting the Microsoft Semantic Kernel package. The vulnerability exists in the InMemoryVectorStore filter functionality, where improper handling of filter expressions may allow remote code execution. This could enable attackers to run arbitrary code, access sensitive data, and potentially compromise the application.