Bleeping Computer

New Spring Java framework zero-day allows remote code execution

A new zero-day vulnerability in the Spring Core Java framework called 'Spring4Shell' has been publicly disclosed, allowing unauthenticated remote code execution on applications. Spring is a very ...
Dark Reading

Zero-Day Vulnerability Discovered in Java Spring Framework

A zero-day vulnerability found in the popular Java Web application development framework Spring likely puts a wide variety of Web apps at risk of remote attack, security researchers disclosed on March ...
heise online

Spring Framework 7 brings new concept for null safety and relies on Java 25

The new Spring Framework uses JSpecify for null safety. It also introduces API versioning and offers a new retry concept for resilience. VMWare Tenzu has released Spring Framework 7. The open-source ...