October 2025

Webtide + HeroDevs: Enterprise-Grade Support for Jetty & CometD

Two open-source powerhouses unite to deliver long-term security and stability for Jetty & CometD.

Framework Spotlight

Never-Ending Support for Hibernate
Hibernate apps are now protected for the long haul—secure, compliant, and future-proof.

Trapped on Django 3.2? We’ve Got You.

Stay compliant while you plan migrations. Here’s how enterprises are balancing modernization with risk reduction.

🚨CVE Central🚨

CVE-2025-55315 — CVSS 9.9 RCE in ASP.NET

A critical-severity flaw exposes apps to remote code execution. NES customers are already protected.

More recent CVEs: 

• Next.js Image Optimizer Vulns →
  
• Spring WebSocket CSRF Bypass →
• Angular Race Condition Bug →
  
• Spring Data Redis Use-After-Free →

Tools & Resources

Introducing the Spring EOL Resource Hub
Your central place for timelines, patch guides, and upgrade planning—all in one link.
Visit the hub →

Bitnami & the Danger of Legacy Containers
Old Bitnami containers can quietly undermine your supply chain. Here’s what to do.
Read the warning →

SPDX vs CycloneDX: SBOM Showdown
Which SBOM format best fits your workflow?
Compare formats →