{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:99532e81-2f35-57e1-a47b-6a4cfbe68b16", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-beans", "version": "5.1.5.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c2663487-a5e6-50e2-b93c-2342608045ad", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7b25c08a-9fd3-5221-8a14-052736177d88", "id": "CVE-2020-5398", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5398 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2e64ee6f-f877-597b-a924-aa340276b80d", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fc974ce6-11fc-536e-8c0d-dfcb39b12b54", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cd584bac-532a-59e2-9b44-e0bdd79d05bc", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:25eafe54-bcb4-5347-b2bf-79b7cf5cd107", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2f36349a-2b75-5930-90bb-e03a797bb991", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f14d81b4-78ff-56bb-8e63-a03a238c7164", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7507e728-9208-5297-b9de-220874e47028", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:77bf150e-f869-577e-a6c7-16617e86c1d6", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cd0de8f2-3263-5ef4-9492-1dc3d37fc9df", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b4dc7bce-9ebc-5745-8216-f4cb523805c3", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:be2c5fcb-3cd1-5003-9510-28008fd228ea", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ff2c0b0d-5cd4-50b3-b169-fd3adf1887d8", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2c75d469-0d8b-5060-a08b-33fcd18c38d3", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bf37015b-e05d-51bf-b664-081da2633e40", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5d10ecbd-2ea2-56f6-84c0-19b48ad3e04a", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-beans 5.1.5.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d4c3c6b0-4f95-5229-b33e-a492dd1900fd", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:db959969-cc1f-5755-9bd5-fb8eb94fd568", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c145eec9-abbd-5407-8cd3-8fbbb83bb0ba", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:82374b45-ea93-5fae-9dc7-feeb5c02252b", "id": "CVE-2024-38828", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38828 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0f4a1bc0-71d8-5059-adca-689cea1d7031", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:81bbeb01-c889-5de6-90f8-1f61889bd5c4", "id": "CVE-2025-41234", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41234 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a6fc3ed4-fd26-5686-bff1-62af7af20ac6", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b19063b7-4ef9-58f6-a954-f5eac992e43a", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:722e6896-c99b-5664-9131-946fe332967a", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8c3a53b1-8254-5f98-97da-3be039274cd0", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:25ee41d1-4cd7-54bc-a12c-da46acd987d9", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:adee9dc8-18d2-5562-8311-b4f456df91e7", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dbce83cb-126d-5d1e-b33a-f9e2645762a9", "id": "CVE-2026-41838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41838 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d487694d-c2c6-5ba3-a94e-adf02bb4b8b9", "id": "CVE-2026-41839", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41839 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:543245de-8c23-5f5a-a089-52a02759bddf", "id": "CVE-2026-41840", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41840 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:54b911ce-3ecd-5db4-a1e9-1979c863e77c", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:37f0910b-7a44-5746-801f-17feca5899ef", "id": "CVE-2026-41842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41842 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:59779058-be26-5050-bdc9-343e7af84b7a", "id": "CVE-2026-41843", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41843 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f34b1f1f-9903-5646-98c9-e5099b52ff49", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2a809f9f-c2f2-59ea-b014-20b02107aea3", "id": "CVE-2026-41845", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41845 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:95bb0947-c4ed-516b-8168-bbe1bb4ee863", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3f34c4e4-9a3a-5427-a655-07147af9ad44", "id": "CVE-2026-41847", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41847 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:39f4ed51-16b7-5e72-a0cb-c0c1b63dc7db", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:60f16020-b33d-5b51-85f8-cfcfb85d25b7", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c67954d8-60d0-59da-97bc-5b4b0b12d4f8", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:05861c5a-6aa9-5527-814d-a3550f8c266f", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7011dff2-91fb-52b7-9943-a0f1e71fdd17", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3e07e598-d0cf-549a-afa3-53c590ee5197", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:38f22309-67e0-53f9-b695-f77be86f16b9", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.1.5.RELEASE-tuxcare.3" } ] }