Software catalogue for Spring

Bosh Editor for VSCode Cloudfoundry Manifest YML Support for VSCode Concourse CI Pipeline Editor Spring AOP Spring Authorization Server Spring Beans Spring Boot Spring Boot Tools for VSCode Spring CLI VSCode Extension Spring Cloud Contract Spring Cloud Netflix Spring Context Spring Core
Spring Data MongoDB Spring Expression Language (SpEL) Spring for Apache Kafka Spring Instrument Tomcat Spring JDBC Spring Struts Spring Tools 4 for Eclipse Spring Transaction Spring Vault Spring Web Spring Web Services


Latest security bulletins

Secuity bulletin Severity Status Published
SB2026011393: Remote command execution in Spring CLI VSCode Extension High
Not patched
13.01.2026
SB2025042526: Missing authorization in Spring Boot Medium
Patched
25.04.2025
SB2024082337: Digital signature forgery in Spring Boot Loader Low
Patched
23.08.2024
SB2024032029: PKCE downgrade in Spring Authorization Server Medium
Patched
20.03.2024
SB2024020212: Local information disclosure in Spring Cloud Contract Low
Patched
02.02.2024
SB2023112967: Multiple DoS vulnerabilities in Spring Boot server Web Observations Medium
Patched
29.11.2023
SB2023112073: Spring for Apache Kafka update for ZooKeeper Medium
Patched
20.11.2023
SB2023082369: Remote code execution in Spring for Apache Kafka Medium
Patched Public exploit
23.08.2023
SB2023053138: Remote code execution in Spring Tools 4 extensions for Eclipse and VSCode High
Patched
31.05.2023
SB2023052310: Denial of service in Spring Boot welcome page Medium
Patched
23.05.2023