{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f6504962-4149-5cb7-a278-ce035119dd84", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-beans", "version": "5.3.25-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:66863f0a-c970-5251-8177-5747991661c6", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.25-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:29fefb8c-362e-5532-a90f-e9a54c4f69b4", "id": "CVE-2023-20860", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20860 affects version 5.3.25-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:575abdb6-9a50-5df1-b708-b39aea8d8b1f", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.3.25-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:378e94dc-b49f-5e2b-9c53-d2e3f95eaab6", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6fb1ed18-7e9d-5798-9ebe-359846b7ec4d", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 5.3.25-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3faeee0b-ab96-50db-9717-100c43259096", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 5.3.25-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c98990aa-ed78-5706-bc9a-b58034b13c75", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.3.25-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b790279f-4768-502f-89a6-228320bf210c", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.3.25-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8b3498ae-64fd-546d-8ce1-25fd300078db", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 5.3.25-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a35c0cf-eb6e-58d8-9cdd-0e757230ded0", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 5.3.25-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f8013f6c-69a8-5d34-8f44-d690b37006c6", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.25-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:87b33a9e-dda9-598c-b396-cb6c24240b4e", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:71f64cb3-ed67-517c-b91e-ab9629206ac2", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:edd2c19c-5cd3-5c75-adf4-715b5bdc33e7", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.3.25-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b23d60cf-ff4a-5aaa-85e2-c0b5b2dfd8a0", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 5.3.25-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:109d4b59-29f8-506c-93db-71a22b948397", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:611a9a56-5618-50a8-8331-078ca08c7f00", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6c3ede36-3843-5304-80ba-9e3653532a7c", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.25-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b8aa6c1-679f-5005-9d4c-b5c09412da27", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.25-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bff55401-9d38-5905-81e2-a97e2a2302b6", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.3.25-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7bd37dc6-0dbd-5563-a88e-45b03e534bec", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.25-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:859bf33d-af5f-5a20-8af2-6acacbf087fe", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.25-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.1" } ] }