Spring Framework 6.1.20 и 6.2.7 CVE-2025-22233

Spring Framework 6.1.20 and 6.2.7 releases fix CVE-2025-22233 #Spring Blog On behalf of the team and everyone who has contributed, I am pleased to announce that Spring Framework 6.1.20 and 6.2.7 are available now. Spring Framework 6.1.20 ships with 4 fixes and documentation improvements. This version will be shipped next week with Spring Boot 3.3.12. Spring Framework 6.2.7 ships with 25 fixes and documentation improvements. This version will be shipped next week with Spring Boot 3.4.6 and 3.5.0. The releases address CVE-2025-22233 for Spring Framework DataBinder Case Sensitive Match Exception (2nd update). Open source support for Spring Framework 5.3.x and 6.0.x generations has ended and will expire for the 6.1.x generation next month, see our support page for more information…

link