{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:152e92e8-73c8-5f83-a379-1f2193848282", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-jcl", "version": "5.1.5.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b9405ff1-3efe-5332-a29b-58960ea680f1", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3eb2d7ee-a040-5e25-b57c-c2bdb7cc5fd9", "id": "CVE-2020-5398", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5398 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d24d6748-1d60-58bd-85ba-2ebd194c7470", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aa379f60-e541-53e7-9c3f-df32bca78f59", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:57b4d5ab-8f0a-50e0-b3f2-273310e39c57", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e724c2b4-b922-59ef-9635-fd335ed62114", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ce8a87df-c3f2-59e8-9859-688fdba47887", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d61c6f0b-9e85-5d4e-8d02-05922d66eda6", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bc47699b-6242-593c-a56e-c57a7cbf1157", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f79e8407-1255-518e-89b7-3b4989e4b4ca", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f9a63536-14cd-5a9d-b2aa-fdb90bd6f404", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dbe6460b-6c68-5f42-a998-3b226f1fc361", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d2d69963-a380-5c9d-ac4c-cb2ab327abe1", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ffdce748-0064-57c4-83e9-76512cf6473e", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0d574854-ff72-5c83-baf6-54840ecfc440", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:61a8da8d-18a0-5ac6-a132-aa3e8f6e376c", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9a2c0a4e-675d-57b1-8d51-eb6e270cfded", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-jcl 5.1.5.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8a95b5fa-b078-500f-bafe-c367629e23b8", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fec682cf-c560-5fe3-a95d-2b01bc4b9790", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7d5a3c73-ff46-512a-b7f0-1ac9ef43852f", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6cfbd542-dc26-50f6-8d7e-810257079262", "id": "CVE-2024-38828", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38828 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9cf2be86-fbe8-5779-bb20-b28ffa7ad57f", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5aa76d5b-efaa-58fe-9f5a-08b5a1b19d25", "id": "CVE-2025-41234", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41234 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:32e4f86b-e026-58b4-a378-fbf6cdea76dc", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:74b3616a-6232-5054-a25b-2dbae70f696c", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:49b66d95-cb8b-59c8-b907-0547fa1d2d17", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c95222b2-1586-573e-8a96-dfc40c3c2ea1", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0221c12f-4b40-555b-b222-c409a7bb02c7", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:80156d3f-19e8-5874-98bf-b738ee1e5fae", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:be0cccd6-022b-5203-bc52-2fa55dbe54cb", "id": "CVE-2026-41838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41838 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:208017f7-3bf3-5a2d-8733-6ba2da6ad1df", "id": "CVE-2026-41839", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41839 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d1fa17ca-72c3-5ca1-8560-fed7fde3cc37", "id": "CVE-2026-41840", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41840 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8fd463d3-85ff-5fd7-9bce-7e4180a8de89", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f467bdc2-5001-5642-a783-5d1195b20291", "id": "CVE-2026-41842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41842 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b56cb1b3-82d4-5bca-9f7c-3738979ee7ad", "id": "CVE-2026-41843", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41843 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d8dd7c2b-0425-5175-9ca8-aab162be7b67", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:51b0c192-8cd4-50e3-9d84-36d83bf5b51e", "id": "CVE-2026-41845", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41845 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3f2e9661-e904-5526-9857-20acdc500fde", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ca76d384-8a55-5f05-9292-86be35c67f7d", "id": "CVE-2026-41847", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41847 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d1d7c74e-2878-5f3b-a0ed-71f6a23c55d8", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4e3954f8-c1aa-5056-a1a3-75ba0a873bd3", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e78ebbb3-223f-5bad-bd96-1fb81658a011", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b4f8d10d-24d9-5f7c-a862-2f5a181f051d", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6dbdba96-45c2-5138-9113-86dd25ba0621", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fe6a6eea-3406-5bc6-bd8d-5adae113f527", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7456ca41-9675-5540-8d38-b2146a3b9449", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.1.5.RELEASE-tuxcare.3" } ] }