{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5e0f9a4c-18fe-525d-a40e-d6a2f3158182", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-context", "version": "5.1.20.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f041d6a8-014b-5fc2-86d5-ebf226abe905", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f7797ca8-c7f4-5467-9cb0-9b5b01b019b3", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ba38bfcf-ad33-515b-8521-a01bad3ce9f3", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:11ea6d0b-c442-51b4-abf7-ee43745397c0", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:63a45e48-cacf-58fa-beae-74c2040fd2b8", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef9d52a8-eb8f-52ab-9508-7dc6351076e6", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:851aa682-7da0-57a8-a199-5162afe88ced", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:abc99264-7abf-5bde-97a4-ca67e8d50a6c", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:23578017-90a4-54c2-b55b-1fcf4c47d82c", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e28216a-a736-5eea-a8af-4e7299b1e2eb", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:30ea1dca-bad7-571b-b496-e77d1418bf0c", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d1c2b5fa-6b08-50d6-8a3c-bd36f623f926", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3b387648-b610-56ad-9195-5f793df8d3b8", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fba6a797-6d87-5e3c-8099-66a7c939b40a", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a1820862-7922-5218-808f-33930075fa75", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:35a37c84-b82f-5311-a65c-08060d126f57", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-context 5.1.20.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:044b3c65-7db7-52bc-9055-ab8e2f72bdc8", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bd6b62fb-611a-5656-90e5-8597b276b8e3", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fc649310-72d6-5816-ad04-6b8658b337ed", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e49534bc-5d0f-53f7-903b-7713cb8e9171", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aae9aacb-8e9b-59c5-9710-56abf153febd", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e9371235-f1a6-5fe2-8030-d4401c1a2c6e", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:74d5f27e-f3ee-5836-8868-c085f8c17217", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0bba1b1f-2aae-5e4b-9383-466233663cd5", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c1b90440-7a74-5337-a1df-c9a09138d63b", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.20.RELEASE-tuxcare.1" } ] }