{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:bda554f5-a2cf-5998-855b-d7600fe7797f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-core@6.0.16-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-core", "version": "6.0.16-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-core@6.0.16-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5fa46f98-a0dd-5d92-b3dc-7dfe7de84352", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:425e2ee8-e822-5b19-8717-8a36428b2562", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4de4abbe-d46f-5f69-aa4a-bd5b56dd3366", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6ddc358a-1770-59db-ac64-7b2a607b04a3", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ccc54122-3a3b-5a13-873d-a98c8d15d7e7", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:09e345dc-1f70-5ce8-a79d-d7d591e6ffbc", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:78350a51-927c-5cc6-8712-ad5a18658b49", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ab3b6a69-c55a-5389-948b-b849000948f5", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:32ee3692-e00c-53e3-9356-64a15c2650ed", "id": "CVE-2025-41234", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5033234d-6e84-557b-9875-d1f01c616d10", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8831dc8e-48fb-55b8-8578-a74e21494625", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d8887c36-9e6f-5e3d-8641-e4448cecd8f3", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4ea34e4f-694c-5c15-b85e-95f4d19e55d9", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 6.0.16-tuxcare.2 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c35d93e4-5234-5916-9bec-388c41862c4b", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 6.0.16-tuxcare.2 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:786114ba-a638-5e9b-ad8a-89c5d90231c6", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6b1b9545-4a99-5343-97d1-11f8b26b9270", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 6.0.16-tuxcare.2 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a530bf4b-3975-5225-9241-2677992c68d6", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 6.0.16-tuxcare.2 of org.springframework:spring-core." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-core@6.0.16-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-core@6.0.16-tuxcare.2" } ] }