{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8ab1eb1e-5afe-5570-962e-114b55b4f301", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-context", "version": "4.0.0.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:af968ce1-fdb9-543a-bc7b-491ecb5bc0bb", "id": "CVE-2014-0054", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0054 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ad01ba8f-8d8f-56c6-82bc-c24d20c93745", "id": "CVE-2014-0225", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0225 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6805d7ae-4dee-51bf-873e-0a14d356be25", "id": "CVE-2014-1904", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-1904 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:405154e8-0925-5a29-b57d-cde1ba635099", "id": "CVE-2014-3578", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3578 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:212b3735-8b47-54d7-9e40-154d43f89981", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:394b8a8d-2b6b-5a18-9eb6-4a217aa244bc", "id": "CVE-2015-3192", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-3192 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:acd49e49-4abd-5214-bc20-05122eb55367", "id": "CVE-2015-5211", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-5211 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f00dfb29-7f3c-5254-bc51-e493b365dbed", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f5bca171-b821-54ea-9c50-27e4ce0a8c53", "id": "CVE-2016-5007", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-5007 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a241b7fd-61f5-517e-a66e-ce166f10c4e8", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9b8bb8ae-eb09-5a18-851b-a9d082b24826", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7e793973-379c-5a4c-8231-53a7853b7408", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:03971a7c-5930-52ef-b460-7938e89370ea", "id": "CVE-2018-1257", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1257 is a false positive for org.springframework:spring-context 4.0.0.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e7340cde-5c41-592b-bb15-2e6d6c1faeb8", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ca79e8cf-dea9-5be3-b01c-2277c8bdc579", "id": "CVE-2018-1271", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1271 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d617f296-2374-50c1-9e51-91f4b6b8b248", "id": "CVE-2018-1272", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1272 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4013a01f-1155-52cf-b7f6-59200956541c", "id": "CVE-2018-1275", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1275 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:22599432-3f53-5ae3-a8ee-99cc5a1fd26c", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dc8455cb-918f-5086-b142-22719acc779d", "id": "CVE-2021-22060", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22060 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c007bbfe-eb12-513d-badb-db45f648a8d3", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7fe75443-2e9c-5d62-995c-1968a5e28f79", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:21d3ec71-8eb4-596f-a155-be4f9abf41dd", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:98315df5-a659-5e65-a7bf-82b226368789", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a05a2dcd-724e-5de1-8978-746fb4444f4c", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f895765f-4a42-5a4f-9672-9d5306fb296f", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9c03e89c-67d2-585d-8684-650c7c24aeaa", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ea91d55b-0e72-577f-a52b-cf4fcdfc02c6", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d99c5623-2e8a-51ab-bdec-5ad61f0affeb", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0910fa48-f765-5fb5-bc11-49fc17b73ba3", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:08c15070-7b19-506c-beb1-db27f50e0365", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:37c8906d-3e3c-5d76-910e-28417a340321", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e3cd4774-803d-5574-926f-01e79e66e342", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5b85f2e1-c605-5a39-a06f-dcdb9de3ae8f", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6ada24c6-cdd9-5976-8633-17ebf2522da2", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:47a2998e-3ddd-5806-af89-f9bc34fe15db", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fc07056d-6156-5093-9275-9b564be20265", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1d34bd22-1c0d-5628-8383-9dc16a7b6d51", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5e490447-684f-5931-9b6b-24663c0fcd01", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:96e5849b-afc0-565f-9148-c6c5a7443d54", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6b798bad-72a4-5f84-ac92-41043fadea04", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1f438751-f512-5708-823c-78abf8edadfc", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.3" } ] }