{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:48def731-a568-50ef-bda1-5cef6f82aee6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.6.10-tuxcare.3", "type": "library", "group": "org.springframework.security", "name": "spring-security-rsocket", "version": "5.6.10-tuxcare.3", "purl": "pkg:maven/org.springframework.security/spring-security-rsocket@5.6.10-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c629d178-ccbb-55cd-98bd-3ad0354b2ae4", "id": "CVE-2007-1651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1651 affects version 5.6.10-tuxcare.3 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.6.10-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bd8b7dbf-3b6e-5ad1-88af-bf1f9dc4b00b", "id": "CVE-2007-1652", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1652 affects version 5.6.10-tuxcare.3 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.6.10-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0add62eb-8f50-57bb-a842-38f0aebfbdb7", "id": "CVE-2020-5408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5408 affects version 5.6.10-tuxcare.3 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.6.10-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:37c93a90-5310-5c8d-9b92-6ff6040c69bc", "id": "CVE-2023-34034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34034 affects version 5.6.10-tuxcare.3 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.6.10-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f70fb97f-5c50-567e-8463-4cc1bd0c0fa8", "id": "CVE-2023-34042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34042 affects version 5.6.10-tuxcare.3 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.6.10-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c398ffd6-1593-5e05-b063-3a7385b66597", "id": "CVE-2024-22257", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22257 is fixed in version 5.6.10-tuxcare.3 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.6.10-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5bfb7854-8551-53f1-9ab4-40158aace24e", "id": "CVE-2024-38821", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38821 is fixed in version 5.6.10-tuxcare.3 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.6.10-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8e8c33e7-2aaf-55c7-9b62-151e4bd7a982", "id": "CVE-2024-38827", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38827 is fixed in version 5.6.10-tuxcare.3 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.6.10-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:69c28c54-5388-5888-b609-69c1e9c22abe", "id": "CVE-2025-22228", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22228 is fixed in version 5.6.10-tuxcare.3 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.6.10-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ef3536a9-975f-5346-8b21-297660266912", "id": "CVE-2025-41248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41248 affects version 5.6.10-tuxcare.3 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.6.10-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:68bd374e-5bbf-52bb-b9ac-941adc70739e", "id": "CVE-2026-22732", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22732 is fixed in version 5.6.10-tuxcare.3 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.6.10-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:621cabfd-ef34-51e2-aa51-dcbf25aeb81d", "id": "CVE-2026-22746", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22746 affects version 5.6.10-tuxcare.3 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.6.10-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:16a72de8-e6af-5644-bf17-69ed00bcfdab", "id": "CVE-2026-22747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22747 affects version 5.6.10-tuxcare.3 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.6.10-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7df0ba11-2807-55f7-b8cf-dcfdc22e87d1", "id": "CVE-2026-22748", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22748 affects version 5.6.10-tuxcare.3 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.6.10-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8a33ab8e-7880-51b0-a79b-debdc8312277", "id": "CVE-2026-22753", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22753 affects version 5.6.10-tuxcare.3 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.6.10-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8a26a3b5-4635-524f-856b-1dccc45f886b", "id": "CVE-2026-22754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22754 affects version 5.6.10-tuxcare.3 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.6.10-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.6.10-tuxcare.3" } ] }