Bleeping Computer

New Spring Java framework zero-day allows remote code execution

A new zero-day vulnerability in the Spring Core Java framework called 'Spring4Shell' has been publicly disclosed, allowing unauthenticated remote code execution on applications. Spring is a very ...
heise online

Spring Framework 7 brings new concept for null safety and relies on Java 25

The new Spring Framework uses JSpecify for null safety. It also introduces API versioning and offers a new retry concept for resilience. VMWare Tenzu has released Spring Framework 7. The open-source ...