Release Date: 20 November 2025

Release (1.13.2)

Overview

This release is a security update, fixing known vulnerabilities in components used in Neo4j Ops Manager. It also includes upgrades to the components used in building Neo4j Ops Manager.  

Highlights

• org.springframework.security:spring-security-core to 6.5.4  to fix CVE-2025-41249
• org.apache.tomcat.embed:tomcat-embed-core to 11.0.12 to fix CVE-2025-55752 and CVE-2025-55754 and CVE-2025-61795

Fixes

• Bring back form validation errors for Notification configuration modals

Internal version changes

• io.github.classgraph:classgraph to 4.8.181
• maven to 3-eclipse-temurin-25
• google.golang.org/protobuf to 1.36.10
• neo4j:neo4j-migrations-spring-boot-starter to 2.19.2
• git-commit-id-maven-plugin to 9.0.2
• pmd.version to 7.17.0
• pmd-core to 7.17.0
• neo4j-go-driver/v5 to 5.28.4
• golang.org/x/crypto to 0.43.0