{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ec5b111f-5c88-5179-96f1-ddbf6104727d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-core", "version": "5.3.25-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8563a1cf-a1a9-59cd-a5b8-b766c067da46", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:33691fc4-f742-52e0-8798-83e45b1b459a", "id": "CVE-2023-20860", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20860 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1e899a04-2fd9-5821-ab44-c53b9e48c7bf", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6b5441d1-b0a5-5fd3-8640-4b06fcf93013", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e7e4ab2d-0369-5ad1-91ed-4a0b89d58119", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4ec3326e-269e-50e5-95dd-af52b030b53c", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:975cb94f-81ed-5e31-91c8-0bff13593562", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9e8a31c5-10d6-5d0f-9562-4706cd5ad0fe", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:93aba3b1-1e85-509d-a51d-79c24c5c69a2", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8989df82-d3de-5370-a192-bc115f550fc0", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:86187dc3-7310-5574-a4cf-f3dc9b8cf475", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e9d90eff-e441-5c47-9603-6a7705d2e098", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:698118f4-3d3d-5edd-a2d3-adbca44c4e52", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:16b7df58-c066-5e0b-ab63-f9f383a24657", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:503e728e-9e4a-5139-b3af-b32c313c63fb", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9271bf14-bd67-50a2-a7ea-bd24c35504b5", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:75a1f815-0c58-5a71-8cdf-bd88f94a783d", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:895aab97-d1ff-5dbc-87b2-d2627ba9c9ae", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a4a9902b-8d13-56dc-8a64-6f1e8f60427e", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:36ed65c8-5e9f-5dbe-b2f4-b66d719b2192", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e7c8a6a6-5ef6-551a-bcfe-6b63089ef7b5", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c925a354-2ffc-5a1f-9d58-547c1f943cfa", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5b28b009-9f00-5dfa-9a2d-c391795593b8", "id": "CVE-2026-41838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41838 affects version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bb46c954-dcef-5a52-b47c-5d5dbe13e897", "id": "CVE-2026-41839", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41839 affects version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:45bbcae2-fda8-51b9-9be6-bb3ab2d556c3", "id": "CVE-2026-41840", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41840 affects version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5cd2cf8c-e152-531b-a7ae-214d1d59ea1c", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:11e2231c-d923-597c-8506-bcf201c14591", "id": "CVE-2026-41842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41842 affects version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0f137745-05a0-56b1-9894-8389a907fcda", "id": "CVE-2026-41843", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41843 affects version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7f8551f1-1b5c-5ea1-81b5-01ecc0cd2f1b", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3e9d4dfe-b86b-5a40-8086-e9519ca20494", "id": "CVE-2026-41845", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41845 affects version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3636167f-e6f7-5668-b833-b5123cc2f1bf", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:80abb301-faea-5f71-a673-dcecb9c4c5ab", "id": "CVE-2026-41847", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41847 affects version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:69304ee1-912f-54a0-a2e4-114794f59d71", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cc1fe4ec-b7c2-504c-b734-a4c7deb712da", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4b06e19a-afb6-5f05-ae72-4dd1838bf644", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d7b91c85-cfdb-5f2f-8419-a6d0b2cb8861", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1e46ace9-5194-516b-8a31-964c81eb38f9", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7e4eb83e-d1d8-52ee-a211-68adcd8ada46", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:63420464-d721-5988-8e0c-55b3e7ec051f", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 5.3.25-tuxcare.3 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-core@5.3.25-tuxcare.3" } ] }