Get a Custom Quote

Featured NES Products
Other NES Products
Button Text
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Angular NES
Angular NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of Angular beyond end-of-life:
v4 - v17
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible with all modern browsers
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing Angular code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Get security updates for the following versions of Angular beyond end-of-life:
Custom Pricing
Billed annually. Multi-year options available.
v4 - v17
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
Angular
dependencies:
  • RxJS
  • NgRX
  • Angular Material
  • Ngx-translate
  • Ngx-Bootstrap

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Angular code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Angular
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Angular NES
Our latest version of
Angular NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Angular
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Medium
CVE-2021-4231
Cross-Site Scripting
<=11.1.0
May 26, 2022
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
Drupal 7 NES
Drupal 7 NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Get Security Updates for Drupal 7 Core, Core Modules, and Core Themes as well as All Contributed Modules for Drupal 7 - with the guarantees of an Enterprise Grade SLA other high value features.

Our Drupal 7 NES Basic Edition covers all community-contributed (contrib) modules*

  • Installs within minutes
  • Compatible with all modern browsers
  • Email Support Only

*Exclusions apply: Custom modules, modules that break due to third-party API changes, and closed-source or proprietary (closed-license) modules are not covered.

Spring Framework
Spring Boot
Spring Security
User icon
What is a “Site”?
A “site” means, (i) an individual dedicated website, and/or (ii) multiple websites co-located in a shared environment, and/or (iii) a deployment target, for which Subscription Services are deployed.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Get Security Updates for Drupal 7 Core, Core Modules, and Core Themes as well as All Contributed Modules for Drupal 7 - with the guarantees of an Enterprise Grade SLA other high value features.
Get security updates for common
Drupal 7
dependencies:

Our Drupal Essentials support coverage includes all contrib modules*.

*This excludes custom-modules, modules which break due to 3rd party APIs, closed-source / closed-license modules.

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “Site”?
A “site” means, (i) an individual dedicated website, and/or (ii) multiple websites co-located in a shared environment, and/or (iii) a deployment target, for which Subscription Services are deployed.
Linked services icon
What is an “Endpoint”?
Drupal 7
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Drupal 7 NES
Our latest version of
Drupal 7 NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Drupal 7
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Medium
SA-CORE-2025-002
>= 7.x-3.0
May 16, 2025
Medium
CVE-2025-31689
>7.0.0 <=7.1.x-alpha12
May 16, 2025
Medium
CVE-2025-31687
>=7.0.0 <7.2.1
May 16, 2025
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
jQuery NES
jQuery NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of jQuery beyond end-of-life:
1.3.x, 1.5.x, 1.6.x, 1.7.x, 1.12.x, 2.2.x, 3.5.x
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible with all modern browsers
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing jQuery code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Compatible with Core Versions of jQuery
Custom Pricing
Billed annually. Multi-year options available.
1.3.x, 1.5.x, 1.6.x, 1.7.x, 1.12.x, 2.2.x, 3.5.x
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
jQuery
dependencies:
  • jQueryUI
  • jQuery-validation
  • jQuery Mobile

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing jQuery code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
jQuery
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
jQuery NES
Our latest version of
jQuery NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
jQuery
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Medium
CVE-2020-7656
Cross-Site Scripting
<1.9.0
May 19, 2020
Medium
CVE-2020-11023
Cross-Site Scripting
>=1.0.3 <3.5.0
Apr 29, 2020
Medium
CVE-2020-11022
Cross-Site Scripting
>=1.2.0 <3.5.0
Apr 29, 2020
Medium
CVE-2019-11358
Cross-Site Scripting
>=1.1.4 <3.4.0
Apr 19, 2019
Medium
CVE-2015-9251
Cross-Site Scripting
<1.12.2 >=1.12.3 <3.0.0
Jan 18, 2018
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
AngularJS NES
AngularJS NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of AngularJS beyond end-of-life:
1.5.x, 1.8.x
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible with all modern browsers
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing AngularJS code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Get security updates for the following versions of AngularJS beyond end-of-life:
Custom Pricing
Billed annually. Multi-year options available.
1.5.x, 1.8.x
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
AngularJS
dependencies:
  • angular-filter
  • angular-local-storage
  • angular-material
  • angular-moment
  • angular-moment-picker
  • angular-strap
  • protractor
  • angular-translate
  • angular-translate-loader-static-files
  • ui-select
  • angular-ui-bootstrap
  • angular-ui-sortable
  • angular-ui-router
  • uirouter-core

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing AngularJS code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
AngularJS
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
AngularJS NES
Our latest version of
AngularJS NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
AngularJS
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Medium
CVE-2024-33665
Cross-Site Scripting
>=2.19.1
Apr 25, 2024
High
CVE-2024-21490
ReDoS Vulnerability
>=1.3.0
Feb 10, 2024
Medium
CVE-2023-26118
ReDoS Vulnerability
>=1.4.9
Mar 30, 2023
Medium
CVE-2023-26117
ReDoS Vulnerability
>=1.0.0
Mar 30, 2023
Medium
CVE-2023-26116
ReDoS Vulnerability
>=1.2.21
Mar 30, 2023
Medium
CVE-2022-25869
Cross-Site Scripting
>=0.0.0
Jul 15, 2022
Medium
CVE-2022-25844
ReDoS Vulnerability
>=1.7.0
May 1, 2022
Medium
CVE-2020-7676
Cross-Site Scripting
<1.8.0
Jun 8, 2020
Critical
CVE-2019-10768
Cross-Site Scripting
<1.7.9
Nov 19, 2019
Medium
CVE-2024-8372
Content Spoofing
>=1.3.0-rc.4
Sep 9, 2024
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
Vue 2 NES
Vue 2 NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of Vue 2 beyond end-of-life:
2.x
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible with all modern browsers
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing Vue 2 code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Get security updates for the following versions of Vue 2 beyond end-of-life:
Custom Pricing
Billed annually. Multi-year options available.
2.x
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
Vue 2
dependencies:
  • Nuxt v2
  • Vue Router
  • Vuex
  • Vuetify 2
  • BootstrapVue 2

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Vue 2 code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Vue 2
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Vue 2 NES
Our latest version of
Vue 2 NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Vue 2
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Medium
CVE-2024-6783
Cross-Site Scripting
>=2.0.0 <3.0.0
Jul 23, 2024
Low
CVE-2024-9506
ReDoS Vulnerability
>=2.0.0 <3.0.0
Oct 14, 2024
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
Bootstrap NES
Bootstrap NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of Bootstrap beyond end-of-life:
2.x, 3.x, 4.x
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible with all modern browsers
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing Bootstrap code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed annually. Multi-year options available.
2.x, 3.x, 4.x
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
Bootstrap
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Bootstrap code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Bootstrap
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Bootstrap NES
Our latest version of
Bootstrap NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Bootstrap
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Medium
CVE-2024-6531
Cross-Site Scripting
>=4.0.0 <=4.6.2
Jul 11, 2024
Medium
CVE-2024-6485
Cross-Site Scripting
>=1.4.0 <=3.4.1
Jul 11, 2024
Medium
CVE-2024-6484
Cross-Site Scripting
>=3.2.0 <=3.4.1
Jul 11, 2024
Medium
CVE-2025-1647
Cross-Site Scripting
>=3.4.1 <4.0.0
May 15, 2025
Medium
CVE-2019-8331
Cross-Site Scripting
>=2.0.0 <=2.3.2, >=3.0.0-rc1 <3.4.1
Feb 28, 2025
Medium
CVE-2016-10735
Cross-Site Scripting
>=2.0.0 <=2.3.2, >=3.0.0-rc1 <3.4.0, >=4.0.0-alpha <4.0.0-beta.2
Feb 28, 2025
Medium
CVE-2018-14042
Cross-Site Scripting
>=2.3.0 <=2.3.2, >=3.0.0-rc1 <3.4.0, >=4.0.0-alpha <4.1.2
Feb 28, 2025
Medium
CVE-2018-14040
Cross-Site Scripting
>=2.3.0 <=2.3.2, >=3.0.0-rc1 <3.4.0, >=4.0.0-alpha <4.1.2
Feb 28, 2025
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
Nuxt NES
Nuxt NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of Nuxt beyond end-of-life:
2.x
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible with all modern browsers
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing Nuxt code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed annually. Multi-year options available.
2.x
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
Nuxt
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Nuxt code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Nuxt
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Nuxt NES
Our latest version of
Nuxt NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Nuxt
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
No items found.
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
NES for Spring
NES for Spring
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
5.3.x
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Our core subscription aimed at users needing basic, essential security coverage for Spring’s main framework and projects. Ideal for all enterprises needing reliable, core-level protection.

Get security updates on key packages, including but not limited to:

Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing Spring code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed annually. Multi-year options available.
5.3.x
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Our core subscription aimed at users needing basic, essential security coverage for Spring’s main framework and projects. Ideal for all enterprises needing reliable, core-level protection.
Get security updates for common
Spring
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Spring code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Spring
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
NES for Spring
Our latest version of
NES for Spring
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Spring
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
High
CVE-2024-38816
Path Traversal
>=5.3.0 <=5.3.39, >=6.0.0 <=6.0.23, >=6.1.0 <=6.1.12
Sep 12, 2024
Low
CVE-2024-38820
Authorization Bypass
<5.3.41, >=6.0.0 <6.0.25, >=6.1.0 <6.1.14
Oct 23, 2024
Medium
CVE-2024-38807
Signature Forgery
>=2.7.0 <=2.7.21, >=3.0.0 <=3.0.16, >=3.1.0 <=3.1.12, >=3.2.0 <=3.2.8, >=3.3.0 <=3.3.2
Aug 23, 2024
Critical
CVE-2024-38821
Authorization Bypass
>=5.7.0 <5.7.13, >=5.8.0 <5.8.15, >=6.0.0 <6.0.13, >=6.1.0 <6.1.11, >=6.2.0 <6.2.7, >=6.3.0 <6.3.4
Oct 25, 2024
Low
CVE-2021-22112
Denial of Service
<5.2.9.RELEASE, >=5.3.0 <5.3.9.RELEASE, >=5.4.0 <5.4.4
Feb 19, 2021
High
CVE-2022-22978
Authorization Bypass
<5.4.11, >=5.5.0 <5.5.7, >=5.6.x <5.6.4
May 16, 2022
Medium
CVE-2022-22976
Authorization Bypass
<5.5.7, >=5.6.0 <5.6.4
May 17, 2022
High
CVE-2022-27772
Resource Injection
<2.2.11
Mar 30, 2023
High
CVE-2023-20883
Denial of Service
>=1.5.0 <=1.5.22, >=2.5.0 <2.5.15, >=2.6.0 <2.6.15, >=2.7.0 <2.7.12 >=3.0.0 <3.0.7
May 19, 2023
High
CVE-2024-22243
URL Redirect/Open Redirect
>=4.3.0 <=4.3.30, >=5.3.0 <5.3.32, >=6.0.0 <6.0.17, >=6.1.0 <6.1.4
Feb 23, 2024
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
Protractor NES
Protractor NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of Protractor beyond end-of-life:
7.0.0
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible with all modern browsers
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing Protractor code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed annually. Multi-year options available.
7.0.0
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
Protractor
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Protractor code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Protractor
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Protractor NES
Our latest version of
Protractor NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Protractor
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
No items found.
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
ESLint NES
ESLint NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of ESLint beyond end-of-life:
8.57.0
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible across all essential platforms and technologies
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing ESLint code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed annually. Multi-year options available.
8.57.0
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
ESLint
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing ESLint code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
ESLint
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
ESLint NES
Our latest version of
ESLint NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
ESLint
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
No items found.
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
Express NES
Express NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of Express beyond end-of-life:
3.x
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible with all modern browsers
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing Express code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed annually. Multi-year options available.
3.x
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
Express
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Express code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Express
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Express NES
Our latest version of
Express NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Express
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Medium
CVE-2024-10491
Resource Injection
>=3.0.0-alpha1 <=3.21.2
Oct 29, 2024
Medium
HD-2024-1410
Resource Injection
>=3.0.0-alpha1 <=3.21.2, >=4.0.0-rc1 <4.21.1, >=5.0.0-alpha.1 <5.0.1
Oct 17, 2024
Medium
CVE-2024-9266
URL Redirect/Open Redirect
>=3.4.5 <4.0.0
Oct 3, 2024
Medium
CVE-2024-43796
Cross-Site Scripting
>=3.0.0-alpha1, <=3.21.2, >=4.0.0-rc1, <4.20.0, >=5.0.0-alpha.1 <5.0.0
Sep 10, 2024
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
Node.js NES
Node.js NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of Node.js beyond end-of-life:
12, 14, 16, 18, 20, 22
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible across essential platforms and technologies
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing Node.js code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed annually. Multi-year options available.
12, 14, 16, 18, 20, 22
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
Node.js
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Node.js code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Node.js
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Node.js NES
Our latest version of
Node.js NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Node.js
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Low
HD-2024-1408
Information Exposure
>=16.0.0 <=16.20.2
Oct 15, 2024
Medium
HD-2024-1409
Denial of Service
>=14.0.0 <=14.21.3, >=16.0.0 <=16.20.2
Oct 15, 2024
High
HD-2024-1407
HTTP Request Smuggling
>=16.0.0 <16.20.1, >=18.0.0 <18.16.1, >=20.0.0 <20.3.1
Oct 16, 2024
High
CVE-2025-23087
Use of Unmaintained Third Party
<= 17.9.1
Jan 21, 2025
High
CVE-2025-23088
Use of Unmaintained Third Party
<= 19.9.0
Jan 21, 2025
High
CVE-2025-23089
Use of Unmaintained Third Party
<= 21.7.3
Jan 21, 2025
Medium
CVE-2025-23167
HTTP Request Smuggling
4.0 < 20.19.1
May 14, 2025
High
CVE-2025-23166
Cryptographic Weakness
4.0 < 20.19.1, 22 < 22.15.0, 24 < 24.0.1
May 14, 2025
Medium
CVE-2025-23085
Denial of Service
4.0 < 18.20.6, 20 < 20.18.2
Feb 7, 2025
Medium
CVE-2025-23084
Path Traversal
4.0 < 18.20.6, 20 < 20.18.2
Jan 28, 2025
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
Rails NES
Rails NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions Rails beyond end-of-life:
2.3, 3.2, 4.2, 5.2, and 6.1
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible with all modern browsers
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing Rails code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed annually. Multi-year options available.
2.3, 3.2, 4.2, 5.2, and 6.1
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
Rails
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Rails code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Rails
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Rails NES
Our latest version of
Rails NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Rails
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
High
CVE-2024-26142
Denial of Service
7.1.0.0 to 7.1.3.0
Feb 27, 2024
High
CVE-2023-22794
Remote Code Execution
<=6.0.6.0 <=6.1.7.0 <=7.0.4.0
Feb 9, 2023
Critical
CVE-2022-30123
Remote Code Execution
2.2.0.0 - <=2.2.3.0 2.1.0.0 - <=2.1.4.0 2.0.0.0 - <=2.0.9.0
Dec 5, 2022
Critical
CVE-2022-21831
Remote Code Execution
7.0.0.0 - <= 7.0.2.2 6.1.0.0 - <= 6.1.4.6 6.0.0.0 - <= 6.0.4.6 5.2.0.0 - <= 5.2.6.2
May 26, 2022
Critical
CVE-2020-8165
Remote Code Execution
6.0.0 - <= 6.0.3.0 5.0.0 - <= 5.2.4.2
Jun 19, 2020
High
CVE-2020-8163
Remote Code Execution
<= 5.0.0 Not affected: Applications that do not allow users to control the names of locals. <= 4.2.11.1
Jul 2, 2020
High
CVE-2020-8162
Authorization Bypass
<= 5.2.4.1 <= 6.0.3.0 Not affected: Applications that do not use the direct upload functionality of the ActiveStorage S3 adapter.
Jun 19, 2020
High
CVE-2020-8161
Remote Code Execution
< 2.1.3 < 2.2.0 Applications that do not use Rack::Directory
Jul 20, 2020
Critical
CVE-2020-8159
Remote Code Execution
Rails 3.x Rails 2.x Rails > 4.x if using actionpack_page-cache <= 1.2.0
May 12, 2020
Critical
CVE-2019-5420
Remote Code Execution
6.0.0.0 - <= 6.0.0.beta2 5.2.0.0 - <= 5.2.2.0
Mar 27, 2019
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
NES for .NET
NES for .NET
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of .NET beyond end-of-life:
6, 8
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Includes 200 Endpoints
  • 4 Developer Seats
  • Continuous vulnerability scanning
  • 24/7 Support
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing .NET code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Get security updates for essential frameworks of .NET beyond end-of-life
Custom Pricing
Billed annually. Multi-year options available.
6, 8
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
.NET
dependencies:

Get Never-Ending Support for:

  • Entity Framework
  • WPF
  • WinForms

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing .NET code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
.NET
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
NES for .NET
Our latest version of
NES for .NET
include fixes for the vulnerabilities below. Our secure drop-in replacement for
.NET
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
High
CVE-2025-24070
Weak Authentication
ASP.NET Core: >= 6.0.0 <= 6.0.36 >= 8.0.0 <= 8.0.13 >= 9.0.0 <= 9.0.2 Microsoft.AspNetCore.Identity: <= 2.3.0
Apr 4, 2025
High
CVE-2025-21176
Buffer Over-read
>= 6.0.0 <= 6.0.36 >= 8.0.0 <= 8.0.11 <= 9.0.0
Apr 4, 2025
High
CVE-2025-21173
Creation of Temporary File in Directory with Insecure Permissions
>= 6.0.0 <= 6.0.36 >= 8.0.0 <= 8.0.11 <= 9.0.0
Apr 4, 2025
High
CVE-2025-21172
Heap-based Buffer Overflow
>= 6.0.0 <= 6.0.36 >= 8.0.0 <= 8.0.11 <= 9.0.0
Apr 4, 2025
High
CVE-2024-38229
Use After Free
>= 6.0.0 <= 6.0.36 >= 8.0.0 <= 8.0.8 >= 9.0.0-preview.1.24081.5 <= 9.0.0.RC.1
Apr 4, 2025
Critical
CVE-2024-35264
Use After Free
>= 6.0.0 <= 6.0.36 >= 8.0.0 <= 8.0.6
Apr 4, 2025
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
PHP
PHP
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of PHP beyond end-of-life:
7.2, 7.3, 7.4, 8.0, 8.1, 8.2
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible with all modern browsers
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing PHP code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed annually. Multi-year options available.
7.2, 7.3, 7.4, 8.0, 8.1, 8.2
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
PHP
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing PHP code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
PHP
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
PHP
Our latest version of
PHP
include fixes for the vulnerabilities below. Our secure drop-in replacement for
PHP
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
No items found.
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
Grunt NES
Grunt NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of Grunt beyond end-of-life:
v0.4 - 1.5
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible across all essential platforms and technologies
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing Grunt code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed annually. Multi-year options available.
v0.4 - 1.5
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
Grunt
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Grunt code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Grunt
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Grunt NES
Our latest version of
Grunt NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Grunt
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
No items found.
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
Fastify NES
Fastify NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of Fastify beyond end-of-life:
3.x
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible across all essential platforms and technologies
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing Fastify code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed annually. Multi-year options available.
3.x
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
Fastify
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Fastify code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Fastify
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Fastify NES
Our latest version of
Fastify NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Fastify
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
No items found.
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
NES for Apache Struts
NES for Apache Struts
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of Struts beyond end-of-life:
All versions
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible across all essential platforms and technologies
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing Struts code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed annually. Multi-year options available.
All versions
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
Struts
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Struts code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Struts
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
NES for Apache Struts
Our latest version of
NES for Apache Struts
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Struts
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Critical
CVE-2024-53677
Remote Code Execution
>=2.0.0 <=2.3.37, >=2.5.0 <=2.5.33, >=6.0.0 <=6.3.0.2
Dec 17, 2024
High
CVE-2016-3081
Remote Code Execution
>=2.3.19 <2.3.20.3, >=2.3.21 <2.3.24.3, >=2.3.25 <2.3.28.1
Apr 20, 2016
Critical
CVE-2018-11776
Remote Code Execution
>=2.3.0 <2.3.35, >=2.5.0 <2.5.17
Aug 18, 2022
High
CVE-2023-49735
Path Traversal
<1.3.10, >=2.0.0
May 12, 2025
Medium
CVE-2023-34396
Denial of Service
<1.3.10, >=2.0.5 <2.5.31, >=6.0.0 <6.1.2.1
May 12, 2025
Low
CVE-2008-2025
Cross-Site Scripting
<1.2.9
May 12, 2025
Low
CVE-2006-1548
Cross-Site Scripting
<1.2.9
May 12, 2025
High
CVE-2006-1547
Denial of Service
<1.2.9
May 12, 2025
High
CVE-2006-1546
Authorization Bypass
<1.2.9
May 12, 2025
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
Apache Solr & Lucene NES
Apache Solr & Lucene NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of Apache Solr &Lucene beyond end-of-life:
8.11.x
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible across all essential platforms and technologies
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing Apache Solr & Lucene code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed annually. Multi-year options available.
8.11.x
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
Apache Solr & Lucene
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Apache Solr & Lucene code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Apache Solr & Lucene
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Apache Solr & Lucene NES
Our latest version of
Apache Solr & Lucene NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Apache Solr & Lucene
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Medium
CVE-2025-24814
Remote Code Execution
<9.8.0
Mar 21, 2025
Medium
CVE-2024-52012
Path Traversal
<=9.0.0 <9.8.0
Mar 21, 2025
Medium
CVE-2024-45772
Remote Code Execution
>=4.4.0 <9.12.0
Mar 21, 2025
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
Apache Tapestry NES
Apache Tapestry NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of Apache Tapestry beyond end-of-life:
4.1.x
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible across all essential platforms and technologies
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing Apache Tapestry code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed annually. Multi-year options available.
4.1.x
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
Apache Tapestry
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Apache Tapestry code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Apache Tapestry
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Apache Tapestry NES
Our latest version of
Apache Tapestry NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Apache Tapestry
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
No items found.
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
Apache Cocoon NES
Apache Cocoon NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of Apache Cocoon beyond end-of-life:
2.3.x
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible across all essential platforms and technologies
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing Apache Cocoon code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed annually. Multi-year options available.
2.3.x
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
Apache Cocoon
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Apache Cocoon code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Apache Cocoon
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Apache Cocoon NES
Our latest version of
Apache Cocoon NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Apache Cocoon
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
No items found.
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
Apache Camel NES
Apache Camel NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of Apache Camel beyond end-of-life:
2.25.x, 3.22.x
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible across all essential platforms and technologies
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing Apache Camel code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed annually. Multi-year options available.
2.25.x, 3.22.x
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
Apache Camel
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Apache Camel code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Apache Camel
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Apache Camel NES
Our latest version of
Apache Camel NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Apache Camel
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
No items found.
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
Apache Spark NES
Apache Spark NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of Apache Spark beyond end-of-life:
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible across all essential platforms and technologies
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing Apache Spark code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
Apache Spark
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Apache Spark code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Apache Spark
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Apache Spark NES
Our latest version of
Apache Spark NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Apache Spark
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Medium
CVE-2022-31777
Cross-Site Scripting
3.3.0 <=3.2.1
Apr 9, 2025
Critical
CVE-2023-22946
<3.4.0 >=3.3.0 <=3.3.1 >=3.2.0 <=3.2.3 >=3.1.0 <=3.1.3 >=3.0.0 <=3.0.3 >=2.4.8
Apr 9, 2025
High
CVE-2023-32007
Command Injection
>=3.2.0 <=3.2.1 >=3.1.1 <=3.1.3 <=3.0.3
Apr 9, 2025
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
Next.js NES
Next.js NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of Next.js beyond end-of-life:
12.3.5
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible across all essential platforms and technologies
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing Next.js code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed annually. Multi-year options available.
12.3.5
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
Next.js
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Next.js code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Next.js
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Next.js NES
Our latest version of
Next.js NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Next.js
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Critical
CVE-2025-29927
Authorization Bypass
>=11.1.4 <12.3.5, >=13.0.0 <13.5.9, >=14.0.0 <14.2.25, >=15.0.0 <15.2.3
Mar 23, 2025
High
CVE-2023-46298
Denial of Service
>=13.0.0 <13.4.20-canary.13
Apr 9, 2025
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
Apache Tomcat NES
Apache Tomcat NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of Apache Tomcat beyond end-of-life:
8.5
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible across all essential platforms and technologies
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing Apache Tomcat code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed annually. Multi-year options available.
8.5
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
Apache Tomcat
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Apache Tomcat code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Apache Tomcat
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Apache Tomcat NES
Our latest version of
Apache Tomcat NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Apache Tomcat
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
High
CVE-2024-56337
Remote Code Execution
>=9.0.0.M1 <9.0.98, >=10.1.0-M1 <10.1.34, >=11.0.0-M1 <11.0.2
May 28, 2025
Medium
CVE-2024-54677
Denial of Service
>=9.0.0.M1 <9.0.98, >=10.1.0-M1 <10.1.34, >=11.0.0-M1 <11.0.2
May 28, 2025
Medium
CVE-2024-52317
Information Exposure
>=9.0.92 <9.0.96, >=10.1.27 <10.1.31, >=11.0.0-M23 <11.0.0
May 28, 2025
Critical
CVE-2024-52316
Authorization Bypass
>=9.0.0.M1 <9.0.96, >=10.1.0-M1 <10.1.31, >=11.0.0-M1 <11.0.0
May 28, 2025
High
CVE-2024-50379
Remote Code Execution
>=9.0.0.M1 <9.0.98, >=10.1.0-M1 <10.1.34, >=11.0.0-M1 <11.0.2
May 28, 2025
High
CVE-2024-38286
Denial of Service
>=9.0.13 <9.0.90, >=10.1.0-M1 <10.1.25, >=11.0.0-M1 <11.0.0.M21
May 28, 2025
High
CVE-2024-34750
Denial of Service
>=9.0.0.M1 <9.0.90, >=10.1.0-M1 <10.1.25, >=11.0.0-M1 <11.0.0-M21
May 28, 2025
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
Knockout.js NES
Knockout.js NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of Knockout.js beyond end-of-life:
3.5.1, 3.4.2, 2.3.0
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible across all essential platforms and technologies
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing Knockout.js code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed annually. Multi-year options available.
3.5.1, 3.4.2, 2.3.0
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
Knockout.js
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Knockout.js code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Knockout.js
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Knockout.js NES
Our latest version of
Knockout.js NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Knockout.js
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
No items found.
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
NestJS NES
NestJS NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of NestJS beyond end-of-life:
9
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible across all essential platforms and technologies
Spring Framework
Spring Boot
Spring Security
User icon
What is a “User”?
A user is any person committing NestJS code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed annually. Multi-year options available.
9
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
NestJS
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing NestJS code to the project repo. Users are unnamed and transferrable across team members.
Linked services icon
What is an “Endpoint”?
NestJS
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
NestJS NES
Our latest version of
NestJS NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
NestJS
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
No items found.
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
PostgreSQL NES
PostgreSQL NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Foundations icon
Foundations
Get security updates for the following versions of PostgreSQL beyond end-of-life:
12.x, 13.x
Custom Pricing
Billed annually. Multi-year options available.
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Multi-year options available.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • Compatible across all essential platforms and technologies
Spring Framework
Spring Boot
Spring Security
User icon
Linked services icon
What is an “Endpoint”?
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed annually. Multi-year options available.
12.x, 13.x
Custom Pricing
Billed annually. Multi-year options available.
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Multi-year options available.
Get security updates for common
PostgreSQL
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
Linked services icon
What is an “Endpoint”?
PostgreSQL
Support icon
Talk to sales for full list of supported packages
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
PostgreSQL NES
Our latest version of
PostgreSQL NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
PostgreSQL
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
No items found.
View Full List
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Talk to Sales
Text Link
Quote Summary
Selected (0)
Number of Users
-
+ Add Technology
Get Custom Quote
Exclamation icon
No results found

Please clear filter tag to use the search option

Clear tags
Check icon
Added to Quote
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Trusted by 600+ companies
Google logo
Microsoft logo
Finra logo
Hitachi logo
Santander logo
Dropbox logo
GE logo
Lilly logo
Capital One logo
NHS logo
Zurich logo
box logo
Experian logo
SAP logo
unqork logo
Acquia logo
Carnegie Learning logo
Schneider logo
Abbott logo
Workday logo
Chevron logo

Frequently Asked Questions

Get answers to some of our most commonly asked questions.
Of course, if you can't find the answer you're looking for, feel free to contact us.
How are licenses tracked? Do you install a license server?
Do you offer discounts for nonprofits, open source companies, or educational institutions?
How hard is it to get this through our InfoSec and Legal procurement process?
Do I pay extra for development, staging, etc. environments?
How does intellectual property for NES libraries work?
Do you have multi-year license options?
What does a license cover?
What happens if team members leave or join after we’ve purchased licenses?
What makes onboarding so easy?

By clicking "Accept", you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. View our Privacy Policy for more information.

PreferencesRejectAccept
Manage Consent Preferences by Category
Essentials
Always active

Necessary for the site to function. Always On.

Used for targeted advertising.

Remembers your preferences and provides enhanced features.

Measures usage and improves your experience.

Reject AllAccept All
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.