{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:105b57d6-2c3c-54c3-9b46-06b199ed9693", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.security/spring-security-acl@5.6.10-tuxcare.2", "type": "library", "group": "org.springframework.security", "name": "spring-security-acl", "version": "5.6.10-tuxcare.2", "purl": "pkg:maven/org.springframework.security/spring-security-acl@5.6.10-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:58b30651-4264-5f3f-84d7-082bef1db0cb", "id": "CVE-2007-1651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1651 affects version 5.6.10-tuxcare.2 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.6.10-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bd174009-b27a-5d6e-822b-bfff9f65d533", "id": "CVE-2007-1652", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1652 affects version 5.6.10-tuxcare.2 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.6.10-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7ec72e93-c77e-5601-a747-2ba33c99227f", "id": "CVE-2020-5408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5408 affects version 5.6.10-tuxcare.2 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.6.10-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:93158ed3-46e3-5415-8c0d-ed2a27881deb", "id": "CVE-2023-34034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34034 affects version 5.6.10-tuxcare.2 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.6.10-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:de565b02-d37b-56c5-845b-ce2afb3804f2", "id": "CVE-2023-34042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34042 affects version 5.6.10-tuxcare.2 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.6.10-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f8c6d2bc-6ef5-55e9-a488-f004764c5f17", "id": "CVE-2024-22257", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22257 is fixed in version 5.6.10-tuxcare.2 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.6.10-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3da3e737-2eda-55c8-8090-66fd4f277e35", "id": "CVE-2024-38821", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38821 is fixed in version 5.6.10-tuxcare.2 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.6.10-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:563be314-c295-58b4-b044-bede7c6c54a7", "id": "CVE-2024-38827", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38827 is fixed in version 5.6.10-tuxcare.2 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.6.10-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:00914151-a6ff-5696-8e47-28194e6f9be3", "id": "CVE-2025-22228", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22228 is fixed in version 5.6.10-tuxcare.2 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.6.10-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:038de8fe-b05d-537e-ae2e-12c6f52598f3", "id": "CVE-2025-41248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41248 affects version 5.6.10-tuxcare.2 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.6.10-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9a454da9-88ef-5f1c-ab5d-636730d28dea", "id": "CVE-2026-22732", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22732 is fixed in version 5.6.10-tuxcare.2 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.6.10-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:efc336ef-54a8-5c8c-b567-7019b6b93c54", "id": "CVE-2026-22746", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22746 affects version 5.6.10-tuxcare.2 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.6.10-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1edf3a4f-b100-56b6-a22c-37823c3d7caf", "id": "CVE-2026-22747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22747 affects version 5.6.10-tuxcare.2 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.6.10-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c73401a5-080a-58ef-8d81-55703ce772f0", "id": "CVE-2026-22748", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22748 affects version 5.6.10-tuxcare.2 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.6.10-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e24d0f6c-f05b-5525-a734-564d99722be4", "id": "CVE-2026-22753", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22753 affects version 5.6.10-tuxcare.2 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.6.10-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7125c2ab-30e6-5a67-a359-e5eff23a83b8", "id": "CVE-2026-22754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22754 affects version 5.6.10-tuxcare.2 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.6.10-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.6.10-tuxcare.2" } ] }