Serial number: AV26-288
Date: March 26, 2026
Between March 23 and 26, 2026, Spring published security advisories to address vulnerabilities in the following products:
- Spring Cloud Config – versions prior to 3.1.3, 4.1.9, 4.2.6, 4.3.2 and 5.0.2
- Spring AI – versions prior to 1.0.5 and 1.1.4
The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.
