{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:209d2244-20fd-5f6d-977c-a6b420371fa5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-core", "version": "5.1.5.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a5f9086f-81a6-55fa-9f62-e7b007c4764c", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c1f07091-7d2a-5ace-8aa6-45c599a41e1d", "id": "CVE-2020-5398", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5398 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e939d3cf-72a5-585a-a77c-ebf3e1ab0237", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bad9e5bf-a857-50de-89dc-8081e397d081", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:51a5ce33-f247-57c3-a2ea-3de5928419c9", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7643dbfa-0a32-5dae-a765-5a66d17b927a", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ade48c4b-5b84-56ca-aec2-518014c16e2e", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5b2faa88-b4d0-5e55-8a94-2596636d986c", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5634cbce-4fea-5ef3-835b-4837d9d15569", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d8f8c272-1caa-5ea0-a58c-29211caeb6a0", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1ae5822c-4e60-5c71-ad62-3f7153b9413a", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9acedc72-0119-5504-9cef-c3f7ffcd197e", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c55cbf0b-07f9-5fe3-9fb1-4ef961b5aa03", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2194b30d-ac37-53f8-bf8f-05bf24c60763", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dc73d7db-645c-5b60-90da-3d4a613fee78", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4223e4a2-dcc7-579e-884a-f742a5b9111d", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9008fa72-d789-57c0-8dd5-7bb2ce60622a", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-core 5.1.5.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:722ee177-df1f-5dc8-af0f-43238aada5b2", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3d1f1d40-c63e-52e3-a6f9-fcb1e97f10ee", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b41beeb6-1e82-56e7-9b7c-3bd6da410b0a", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:362c2d06-3300-5c6b-8eec-11e9f6eac509", "id": "CVE-2024-38828", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38828 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a84d86ab-3efd-5362-8098-a333ecfb5f29", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8e6dd26f-8e90-5aa3-9719-fa98671aa8bb", "id": "CVE-2025-41234", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41234 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ccd5136f-6387-5af6-97b6-457a4b1c9ca3", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5a98d3fe-fc7d-5a2f-a64c-fe09cb65d28d", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4dafd03d-c9e4-5967-8057-f3b245ada18b", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:89993584-4dbc-55a5-99f7-7978f29d99bd", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a1249aef-3197-5a86-a143-b3c762f1278f", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7dee8ecf-2a95-5ae2-ad34-7a0d6bef9cbe", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:22fbdd08-739a-54ca-8b78-1020d9de6b3c", "id": "CVE-2026-41838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41838 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e50c5c3e-135c-5d8c-914f-4a0ddc2b0168", "id": "CVE-2026-41839", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41839 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8f528563-c39a-5d68-b826-b5eb1614637f", "id": "CVE-2026-41840", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41840 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5c9ca04b-f11c-50d2-b72c-ccae194b8c17", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bb284e05-a07c-5d10-9148-947331f8b861", "id": "CVE-2026-41842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41842 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c8966cc3-4ca7-5ae3-8865-76dca44983ff", "id": "CVE-2026-41843", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41843 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:69625668-b7d9-52f4-97e0-2975f93fdbac", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8f8eb437-682d-591e-93d2-ea320f114957", "id": "CVE-2026-41845", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41845 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:46a54dde-6b14-556b-992a-2c80d424c6d8", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d7b3f692-0f25-5f92-8894-9a8a7423eb8c", "id": "CVE-2026-41847", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41847 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d5e03c55-b52a-5e1d-843a-b2dbc152bd0d", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ebff6ef9-3d52-59eb-8067-d7fe44f61576", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2260b714-a28e-5607-89d4-22461694af13", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a06ed182-6835-57ee-9f20-6fe2b56878c3", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d0ff67d4-33db-5cfe-a268-be133c823d26", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5da691a2-9681-5918-ab23-24c841378b3f", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9c9663cd-2a08-5279-8f74-bf9fe04f436c", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-core@5.1.5.RELEASE-tuxcare.3" } ] }