CIB seven 2.0.5 CE+ - Release Notes

Release Notes

Release Date: December 2, 2025

Highlights

  • Updated Spring Boot framework to version 3.5.7

Technical Updates

Dependency Updates

  • Update Spring Boot from 3.5.6 to 3.5.7
  • Update Logback to 1.2.13
  • Update Tomcat to 10.1.48
  • Update WildFly to 35.0.1.Final

Resolved CVE Vulnerabilities

Medium Severity
  • CVE-2025-11226 - CVSS 6.4 (RedHat). Package: ch.qos.logback:logback-core
  • CVE-2025-53057 - CVSS 5.9 (RedHat). Package: openjdk17-jre-headless
  • CVE-2025-53066 - CVSS 4.8 (RedHat). Package: openjdk17-jre-headless
  • CVE-2024-58251 - Multiple packages affected: busybox, busybox-binsh, ssl_client
Low Severity
  • CVE-2025-61795 - CVSS 5.3 (RedHat). Package: org.apache.tomcat.embed:tomcat-embed-core
  • CVE-2025-46394 - CVSS 3.3 (NVD). Packages: busybox, busybox-binsh, ssl_client

On this Page: