{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1cc8df5a-c79b-5475-95cf-3b49b991a2a5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-context-support", "version": "5.3.24-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:47fd049a-2a41-5bb9-a796-e5c3b34bd3e6", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4b93037b-99dd-54e8-b8b1-14850d97f76a", "id": "CVE-2023-20860", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20860 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c81365d2-3c53-5c70-b1fc-ac94e8ac27bf", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d668010d-d685-50f3-a8e7-3bc0e1a2e98e", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4dbaa275-851e-58b8-8a7d-2ecb5d502afd", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c4ca9bf5-c490-5b51-8599-079d9da8325b", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ff786058-d29c-5a0e-b1dc-51033332cbbd", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5fc3c638-3903-50ec-9f62-b45317830d54", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b6c5b22d-2063-54dc-a41a-f9d51898e9c9", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:514009bd-d2a9-586e-8cd4-8045243ad705", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:139aca6b-4674-5d88-a3d7-2130d4fbe256", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2e51b5a8-d8ce-5a1b-9d59-61e61ef2b570", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c6420325-b1bc-5cf5-8dd9-5dd8b5b68c53", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c29198ad-87b0-5423-8305-89e381cbc895", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:034236bf-8b33-586e-bf91-7709903b9ff4", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f455cafc-55e6-594a-b4ed-fb65a6df21da", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:456e308e-8b7e-5cdc-8f92-01bf37f4420a", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3f850803-6850-5091-93b9-661acc13ac2d", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:97777d3b-0384-5bbd-8297-b0eaf7c47de1", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:728ca36e-efc7-52f1-83cc-b354bf916950", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4fb1a040-96bc-53e9-a2d1-12baf863590c", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d5c86281-d660-520f-89f0-80106dc331fc", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c9de4c89-b42c-5ba2-b70c-416270790e19", "id": "CVE-2026-41838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41838 affects version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c740136f-24df-5998-b6db-da81f0112d98", "id": "CVE-2026-41839", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41839 affects version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ca6b93d7-45d9-5320-8c83-35c38a210b81", "id": "CVE-2026-41840", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2026-41840 does not affect version 5.3.24-tuxcare.3 of org.springframework:spring-context-support. Patches already applied: 7052da453285658215efc1dd5ecb0d472fde2de1 (already in target via 2c11852775 'Backport CVE-2026-22740 to 5.3.24')" }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1abf6f69-ef90-5eae-babd-a542f1e10c32", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:07913bed-5980-5853-ae1a-65f4bfef9498", "id": "CVE-2026-41842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41842 affects version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a48a65c1-1fb5-5844-8b28-c639bfeb0a64", "id": "CVE-2026-41843", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41843 affects version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:906213c3-d1db-5828-91ca-8e6638779e1d", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ddc51d04-d1d8-5d96-a6a9-2e8e3e268a33", "id": "CVE-2026-41845", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41845 affects version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e2c6e85f-6732-5bc9-ad96-a38909c7a687", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:efb32380-9d01-599e-85de-cdba151d41e3", "id": "CVE-2026-41847", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41847 affects version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:62095c0c-3961-5552-8d8b-771cb9cd5359", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:693a0344-cc44-5178-8962-4e7219228f94", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c7de7aa0-ea9f-5d2a-87e2-7074b96a201d", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c6e87e04-bbe7-59e4-9c45-5da5a73d57e2", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cbd64e50-2aa8-59b5-bcd5-6b4be549db80", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f5dcbc10-cefb-57c5-8eb8-c70ef1d16f8e", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9271b49b-ef93-5f49-93b8-b082b8986492", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 5.3.24-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.24-tuxcare.3" } ] }