{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f7668a9e-2b7e-5e5b-a77d-31c67a15b3ac", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-beans", "version": "5.3.25-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7b21cdfc-bc88-59ec-959a-450da9d959a8", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:19b7b1dc-c3c9-5b47-adce-b58558a2d8f5", "id": "CVE-2023-20860", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20860 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bf9f6d62-c66c-5256-92b0-2656f1cebcf8", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9a6cfb7d-71e3-54fb-b66f-4fd26c3d0d05", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a56e3bb1-b27a-54d9-b618-f19fd2296138", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0ad7f735-40ba-54d2-8c31-3c79d33ebc37", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f4ddc051-9247-520f-b452-4486b2d6b04e", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:72da3101-0aef-55f1-bf03-3fb35ac72796", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:707a53d5-411b-54e4-8eb8-d8fce65daafb", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:01bba0b7-9238-57a3-8acd-4add518c7776", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ab92945f-c7a1-5ca9-83c4-b7088aa386f9", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:55f040de-47db-582e-9965-afba6ddf0af7", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5af7d8eb-94af-52d3-b709-9e1e9828e4cd", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7ded4247-00e4-591e-9511-b6d30d6c7beb", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ab0b2ad8-813f-562c-a505-0ea642c1b4ff", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1cc41b56-d19e-59df-baf9-feb7487a2ca4", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:86d9131c-1cd3-5495-bc1b-931ba660ff6d", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4834a068-8808-59cb-8794-e861cbbf5eae", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:047725ee-97f7-5c24-b1ab-eacba9cbc4a6", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c95068fb-9704-57aa-aca0-508be56af4da", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e393c89d-98c3-52db-aaf7-0ba588dfd70d", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5c435528-f613-535d-9d07-6ff52f13b0d6", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:849ab207-457c-5afe-8dbf-3113944bb59d", "id": "CVE-2026-41838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41838 affects version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1bf0af11-1abe-5e44-af4c-489ecd1b96b2", "id": "CVE-2026-41839", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41839 affects version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:47b62525-b53c-5314-ad0a-a5953e0124c5", "id": "CVE-2026-41840", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41840 affects version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d0e593f4-2e18-5887-880a-f6f8c17c3688", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e0de566c-86d5-58fc-b3cb-de1466b17eba", "id": "CVE-2026-41842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41842 affects version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7343c578-5e6e-50dd-8c7d-adb6bceb0e55", "id": "CVE-2026-41843", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41843 affects version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:573177fa-624f-534f-84ff-e28bfa285756", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fd73d21e-a39a-5033-bd9f-a3064fe98463", "id": "CVE-2026-41845", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41845 affects version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:661d3647-c44a-55b8-9653-269ec2f56ea8", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:79fe01cb-24c4-5e43-8560-2c54c671895c", "id": "CVE-2026-41847", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41847 affects version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1040b412-2e08-50a0-82de-e42fc6e10ba5", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6505d1ed-25be-5346-9324-da34cc088387", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f2d60b01-1c5d-5553-aa50-f9eae777d0b9", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:95f0b063-8a39-5d3a-9c2b-19d5462022af", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:87686b8d-6841-507d-ae19-e0c5ad7a0506", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d32a3869-bfca-5c51-a659-7fac5bcee6c6", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9e9ef32b-c374-5c95-bd46-f595e18ee650", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 5.3.25-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.25-tuxcare.3" } ] }