{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:6ca1e753-247d-581c-b076-4da882b012dc",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:maven/org.springframework/spring-beans@6.0.16-tuxcare.2",
      "type": "library",
      "group": "org.springframework",
      "name": "spring-beans",
      "version": "6.0.16-tuxcare.2",
      "purl": "pkg:maven/org.springframework/spring-beans@6.0.16-tuxcare.2"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:b787c25c-489b-5fc2-8bf2-c239e819f450",
      "id": "CVE-2024-22243",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-22243 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-beans."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-beans@6.0.16-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:8b406778-a3f3-5d43-9a49-c4e11df23ded",
      "id": "CVE-2024-22259",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-22259 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-beans."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-beans@6.0.16-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:28810b5c-ab79-5a86-a65a-ee7bf471635c",
      "id": "CVE-2024-22262",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-22262 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-beans."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-beans@6.0.16-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:ebf537fc-82ed-5be1-8895-5ee2ec51b023",
      "id": "CVE-2024-38809",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-38809 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-beans."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-beans@6.0.16-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:77a46e57-1bec-5923-8a78-f21cce948044",
      "id": "CVE-2024-38816",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-38816 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-beans."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-beans@6.0.16-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:04019355-2189-5fcd-af4b-dcd2c3b48f42",
      "id": "CVE-2024-38819",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-38819 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-beans."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-beans@6.0.16-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:86d259f8-e7d4-5a85-9d01-84e948cf01c4",
      "id": "CVE-2024-38820",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-38820 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-beans."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-beans@6.0.16-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:cb31ec03-2112-5ab5-a9be-2904ae29f01e",
      "id": "CVE-2025-22233",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-22233 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-beans."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-beans@6.0.16-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:a7937475-1403-5ef6-a5e7-ced6db4cb8e8",
      "id": "CVE-2025-41234",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-beans."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-beans@6.0.16-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:81b84293-93fb-57f8-b65c-29961932aab8",
      "id": "CVE-2025-41242",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-41242 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-beans."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-beans@6.0.16-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:8c4ca9bc-ce61-54ec-a7bb-d4204d99ea21",
      "id": "CVE-2025-41249",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-41249 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-beans."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-beans@6.0.16-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:9fca9ba2-cac2-585f-8476-c28ecbfdd0db",
      "id": "CVE-2025-41254",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-41254 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-beans."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-beans@6.0.16-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:a4555835-609b-5ec3-b96c-0ef8e7ac54aa",
      "id": "CVE-2026-22735",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-22735 affects version 6.0.16-tuxcare.2 of org.springframework:spring-beans."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-beans@6.0.16-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:dcfddd08-a61d-5a94-a5f8-0efcb5b9798e",
      "id": "CVE-2026-22737",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-22737 affects version 6.0.16-tuxcare.2 of org.springframework:spring-beans."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-beans@6.0.16-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c9e9bda2-3330-5470-af2d-d5b86e273c15",
      "id": "CVE-2026-22740",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-22740 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-beans."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-beans@6.0.16-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:4d6e2ce2-6963-58fb-95ed-cba1b8db60e8",
      "id": "CVE-2026-22741",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-22741 affects version 6.0.16-tuxcare.2 of org.springframework:spring-beans."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-beans@6.0.16-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:1863bba4-f5dd-5380-b152-33c6f71ec7ed",
      "id": "CVE-2026-22745",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-22745 affects version 6.0.16-tuxcare.2 of org.springframework:spring-beans."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-beans@6.0.16-tuxcare.2"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:maven/org.springframework/spring-beans@6.0.16-tuxcare.2"
    }
  ]
}