{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c5052070-e183-5fdf-8ea8-e925d790d2d3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.security/spring-security-acl@5.7.12-tuxcare.3", "type": "library", "group": "org.springframework.security", "name": "spring-security-acl", "version": "5.7.12-tuxcare.3", "purl": "pkg:maven/org.springframework.security/spring-security-acl@5.7.12-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:83d2dd31-4c1c-5ebe-a801-e4fc807bdf3b", "id": "CVE-2007-1651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1651 affects version 5.7.12-tuxcare.3 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.7.12-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e2cd421e-c4bb-584f-8ec2-969c1138a90d", "id": "CVE-2007-1652", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1652 affects version 5.7.12-tuxcare.3 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.7.12-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e071e828-ec26-5b24-9513-d59da5c2acf6", "id": "CVE-2023-34042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34042 affects version 5.7.12-tuxcare.3 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.7.12-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b5c4bcad-f22c-5013-af34-643ed7c7e982", "id": "CVE-2024-38821", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38821 is fixed in version 5.7.12-tuxcare.3 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.7.12-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:93eacb5b-8800-5f8f-b58e-614c66ce351a", "id": "CVE-2024-38827", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38827 is fixed in version 5.7.12-tuxcare.3 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.7.12-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dc485b87-a1fa-5629-9bd0-a508b67744cc", "id": "CVE-2025-22228", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22228 is fixed in version 5.7.12-tuxcare.3 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.7.12-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0cf9c27c-d238-51e3-82b8-ceaceb15e875", "id": "CVE-2026-22732", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22732 is fixed in version 5.7.12-tuxcare.3 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.7.12-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:366ba0d2-8ebb-5c14-a023-207c65025767", "id": "CVE-2026-22746", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22746 affects version 5.7.12-tuxcare.3 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.7.12-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e3e19fc2-75af-5dcf-957e-d6d6df46533d", "id": "CVE-2026-22747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22747 affects version 5.7.12-tuxcare.3 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.7.12-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:facfb2ff-f1b2-5129-889f-fc3bdb043ed1", "id": "CVE-2026-22748", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22748 affects version 5.7.12-tuxcare.3 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.7.12-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0625624c-37f9-5543-baa0-d311d80eeddb", "id": "CVE-2026-22753", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22753 affects version 5.7.12-tuxcare.3 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.7.12-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2a25be5c-ac98-5940-b8fe-175d4d6080cf", "id": "CVE-2026-22754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22754 affects version 5.7.12-tuxcare.3 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.7.12-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.7.12-tuxcare.3" } ] }