{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4577bfa6-6911-5f0a-89b5-352865121a56", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-beans", "version": "3.1.1.RELEASE-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:980f3631-adb7-5b75-9576-63a46cfa91ef", "id": "CVE-2013-4152", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-4152 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f3185206-0436-56f3-ac6f-a861d0eec9c2", "id": "CVE-2013-6429", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6429 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d254576f-833d-5eb4-97ed-a5c95b0c0ecb", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5c4e34a1-5bd9-5150-a210-c8470e1d2b2b", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5f9e00c2-6891-5188-810d-fced53dc0b7c", "id": "CVE-2014-0054", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0054 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:56ec1ef9-25e9-59b7-9290-9089a5a3b7a0", "id": "CVE-2014-0225", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0225 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9d986f9d-ccd0-5d15-97a9-ce51591f077e", "id": "CVE-2014-1904", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-1904 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:81af6995-4142-5e7b-9cf9-b05b0b9a8849", "id": "CVE-2014-3578", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3578 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5f91665d-9485-5cc6-8009-686c837b069d", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5fd978c5-df2d-5fc3-a203-1557bbe59bd1", "id": "CVE-2015-3192", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-3192 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9fa16d3f-081f-58de-b8cd-bd6d1c738295", "id": "CVE-2015-5211", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-5211 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a4de3710-1714-5b92-a388-44b4cab25f7e", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ed96093b-3cf7-533b-b821-a671d257d940", "id": "CVE-2016-5007", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-5007 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fac2647d-31bb-530a-b421-0af5dde206e9", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:135c188a-97e4-51e4-9625-d5a245f02268", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9d9dbf48-04cc-5323-8617-230276cdc533", "id": "CVE-2018-11040", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-11040 is a false positive for org.springframework:spring-beans 3.1.1.RELEASE-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:22f9279d-e445-582c-8602-47ace97a1ac2", "id": "CVE-2018-1257", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1257 is a false positive for org.springframework:spring-beans 3.1.1.RELEASE-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cc0d0608-cc6a-5a4b-89cc-469a70c63e49", "id": "CVE-2018-1270", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1270 is a false positive for org.springframework:spring-beans 3.1.1.RELEASE-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8aba3847-e198-55cb-bc5d-cdcaed2a3927", "id": "CVE-2018-1271", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1271 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:065df32c-b0dc-58f0-84e7-c4fa2c0e29d3", "id": "CVE-2018-1272", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1272 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d21513ba-8b2d-5c71-806b-0484d421b75c", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e14931b8-3fd2-5434-a0e7-81b99baf19e9", "id": "CVE-2021-22060", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22060 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a1fa7977-dc8e-5357-80bf-138ba1f2ac14", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:314f7b46-74ae-52be-8d7e-e79a9d913368", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3eae006b-d674-5f01-92c7-9da9e2fe8eca", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:98416467-aef3-5fec-be18-cb43a405482c", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:689a1cae-1392-58c5-99bc-3351648deca1", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d2b11859-3b1b-548d-bd2c-bffec8a44e73", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6ea48199-967d-5d5e-9ffe-278718bf7dfe", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b3117f68-055c-5e62-8ab9-5f1c3d7c1041", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3ac0e441-de4d-52f0-82ed-2108548caa01", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7e0331f4-0dff-5901-ac0a-e2cb768a199e", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:04d1c9ee-730e-561c-a3f3-a6569e7e8f01", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:28006572-eb72-53b5-a7c0-443a151b2cbc", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:badbc595-b07f-5a7e-a9d8-f6e61727ca66", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ec8b7632-0ebd-56b6-938f-fee8581d8a99", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5aa99a56-c539-5bd4-868d-4073af686cdf", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:329e5328-cfa7-542b-ae81-c1054c7445fd", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7b0d18f3-f56f-58ba-a480-7835f9b39726", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:96aeb78d-3806-59bb-ab84-4dba7e418f7b", "id": "CVE-2025-41242", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41242 is a false positive for org.springframework:spring-beans 3.1.1.RELEASE-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:29b0ae9d-6f93-57a4-863a-29a7a8650b2f", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ecd87bed-4a79-5146-9d5b-b8bf81904234", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f66e6743-b212-5c88-a6cb-fb092536cc67", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-beans@3.1.1.RELEASE-tuxcare.2" } ] }