close

CVE reports published for Spring Security

We have released Spring Security 5.3.2, 5.2.4, 5.1.10, 5.0.16 and 4.2.16 to address the following CVE reports:

Please review the information in the CVE report and upgrade immediately.

Spring Boot users should upgrade to 2.2.7 or 2.1.14.

comments powered by Disqus