Bleeping Computer

New Spring Java framework zero-day allows remote code execution

A new zero-day vulnerability in the Spring Core Java framework called 'Spring4Shell' has been publicly disclosed, allowing unauthenticated remote code execution on applications. Spring is a very ...

Broadcom Expands Its Investment in Spring and Java Ecosystem Security to Prepare Customers for AI-Enabled Threats

As the steward of Spring, Broadcom is investing in active scanning and remediation, commercial-first CVE-only patches for current and older versions under support with clean-room built Java ...

Broadcom Expands Spring Security To Anchor AI Driven Enterprise Workloads

Broadcom (NasdaqGS:AVGO) has announced its largest set of Spring security updates in 23 years, focused on the Spring and Java ...
InfoQ

InfoQ Java Trends Report 2025

AI on the JVM accelerates: New frameworks like Embabel, Koog, Spring AI, and LangChain4j drive rapid adoption of AI-native and AI-assisted development in Java. Java 25 anchors a modern baseline: The ...