{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c78af4d7-92aa-50e9-a01e-f8ec0c1888cb", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-instrument", "version": "5.3.25-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c981add5-ba4b-58fa-a225-0987988c218d", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:faac0786-7b17-5734-b268-0a5173ee36b7", "id": "CVE-2023-20860", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20860 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:856328d1-e6cb-5646-9dd4-19babddf844f", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9ead81d4-8af7-5d9a-b3ba-24c456f86c0c", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:282be8ac-90d6-5beb-9417-5d7321bfca3e", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f856ae58-7eb3-56dd-bbf2-a335fdeb84b5", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a71c309f-e447-5374-a3be-b602146fbd2b", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6cb59a8b-8bbe-5999-8562-30d788619786", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:607b5970-ffd8-50f0-a561-a1a1beb12c3b", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b87a5511-b95e-5881-81d0-b727314fd730", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8c658dff-c5e8-536c-aa79-ad2614a455d1", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f1def3fc-9eae-5baf-91ec-20e4daadc458", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7ad09914-10b7-52fb-a85f-d9011958c4f8", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ad8cb77f-e63d-5733-8ead-4f32b1486a9b", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:42b40fdf-c535-5fd4-ba84-7604ea2370bc", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:18fad562-b810-59b9-a9c7-45756296cb83", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f3585721-6bcb-59ff-b3a7-f47581267fbf", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:93dfad41-d447-5ba0-953f-51ca6852dcab", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d3ee29ac-1ecd-5b41-9035-b088d0aa6f8f", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:26aa9580-c264-51f7-aba3-ab3b5f38b0af", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:485cb029-9bcd-5f52-9fac-53f7fc6272a4", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0f4b057e-6fbd-56cd-9f70-ee30b01cbe8a", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c09120fd-dfeb-5afe-b424-63c450aeb1e8", "id": "CVE-2026-41838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41838 affects version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8271d9fb-0a93-5606-9175-7a2b7f31a6e1", "id": "CVE-2026-41839", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41839 affects version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:177042f4-6668-566e-a1c7-1d08a16a95ef", "id": "CVE-2026-41840", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41840 affects version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:159ee93a-a336-5b3f-9d93-d83ca6fd1289", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:df6cb781-8de9-530e-9667-af2160a9ec30", "id": "CVE-2026-41842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41842 affects version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e500aad4-0f97-5642-861c-f885d6d99be3", "id": "CVE-2026-41843", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41843 affects version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3e5c1986-9fbe-5868-b148-bfb568a0f803", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ce62045f-650e-5e56-a4a4-59a035918962", "id": "CVE-2026-41845", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41845 affects version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:11380801-47b3-52ca-8ebd-4e078976b320", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b83efed8-3403-5d58-a2f0-89193711aaf7", "id": "CVE-2026-41847", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41847 affects version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:517b6344-b3c4-5cfe-bc8f-2c8987a500a5", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c281d3b9-9938-516c-81d8-1b85e7bd7643", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:804671d2-2e6a-52c5-b3d7-8047335da282", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:938eb7a1-b4d7-550c-a80f-4c6e82eea3f8", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2304835a-5253-5947-a4c9-d2a414987cfe", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:986ccaf8-f28a-567a-9485-e4ea5be04b85", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:26041e30-b888-53af-9b12-c8a2d3dafa12", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 5.3.25-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-instrument@5.3.25-tuxcare.3" } ] }