{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b9623f64-71fb-5a2f-8acb-405176d9ddf0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-beans", "version": "6.0.23-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:06891e0c-c166-54c2-8d77-c41bbabec3ae", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 6.0.23-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2bbcdb86-e59a-5120-ac26-f9af3dec32ad", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a406077f-38c5-5a8d-9e65-8def502ee965", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:49978a64-b84a-5dd0-ba1a-702bb1dea80b", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f65b9542-d72d-5dce-b82e-217ca41fb68e", "id": "CVE-2025-41234", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c345ec84-5034-500e-86ee-2a70f477a1ba", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 6.0.23-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:562277a2-04f8-5289-b9ed-7ae177ef0c54", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 6.0.23-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2f450992-8da9-52de-aa6a-e08e571b2810", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 6.0.23-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:910ae580-390d-5aab-89e2-5fb7d23858f8", "id": "CVE-2026-22735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22735 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:23d6db81-969e-52e4-af9e-b9dcf2da798e", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 6.0.23-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:33626d0b-59ad-51ad-a2a0-e2ccb81c11a5", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6a7f0993-7c5f-5566-89e0-894ea992a383", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 6.0.23-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c29e7312-c7f3-5185-9876-9b295f21aa14", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 6.0.23-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.2" } ] }