{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4b9ea78b-c8d1-56a6-8ff5-3cbe0fda1356", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-beans", "version": "5.3.25-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:732b2fb3-aa64-5c24-af68-4509bba8d2ac", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.25-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f757a9c7-e7e2-549c-89f3-ef648964caf9", "id": "CVE-2023-20860", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20860 affects version 5.3.25-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:09fcba0a-fc6b-56b8-9d36-6d470e8dfc50", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.3.25-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1fc298cd-a243-5c18-be2e-b400db19fdad", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:155364b8-52a8-55df-b6e8-91a70b5e2147", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6245900e-eda1-5775-99e7-305b3a86cc4b", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4237d95f-312e-53c2-b332-b44dedd8164a", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c0051126-04bc-5b95-aa58-fa6ca031a727", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.3.25-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5fe5e298-4525-5467-a822-0b0063ce5ee5", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:88b9e460-5eff-513c-bd72-d9708e8664f8", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e8fc6389-dda1-5666-8b9a-7be307c1e413", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.25-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b301ca41-c0f9-5f8b-8454-9e52d4adcbc0", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:efc28c94-a3aa-599e-9f4d-d520508861c1", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d7e6343d-eca9-5fa5-8998-4f185770a234", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ae08b8cb-ec2d-5781-940e-3de19e1d6008", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9caeff40-bd9d-5d79-88bb-5e4c555f5781", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:af25a661-70e7-5ef0-90ca-3bc8542d8274", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aac3f5bd-a6a8-57d6-8c34-bf95f2ffb5ab", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.25-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5a8367fa-277b-57b4-b219-4382a002f428", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.25-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:de41a913-80ab-57c6-b964-fdfd09c0ca6f", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.3.25-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:688fdc44-dc1e-5b25-a4e3-f29b89019b8b", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.25-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a8e54025-3896-5870-9bd7-6635fcf8b189", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.25-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.2" } ] }