{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d1a06641-8fea-540a-92ff-71832d25eedb", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-messaging", "version": "5.1.5.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:1addb53a-b6b3-5d71-a7bf-db5cae25410d", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aed35502-61cd-5bd3-9a9a-fd06859eb32c", "id": "CVE-2020-5398", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5398 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fe6f8b87-97d9-5f1e-b857-5ed19b968bc0", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1996c52e-5bf1-5951-9348-4436d74d9f1b", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8272934d-61f6-5f8d-9c9b-3685d958a78b", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1b198b8d-2bd4-5285-9dfa-ad7ce1beefa6", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5250bfc7-a335-5127-aa3a-bed7b0c0bac9", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:336de7e8-49a6-544d-836c-6c5684bc3f90", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cf767f56-1116-57b6-883c-c1f8670bdcc4", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8ffef3b0-16ac-5d44-9833-d34b0ad02f3c", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:98416f46-52b1-52b6-855d-a4a2e88d4bad", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7c4c9126-66d1-52b8-bb68-efa1f074a6e5", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:87282c65-963c-5585-9791-a499f3e02f81", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:59e46fec-07b2-560b-aee2-0580eadfeeaf", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1ff03d41-35a0-5ad4-ab98-7ff6671bd240", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:13fe9985-8875-5cab-90c2-b5c0ec8464b3", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2664bc75-3efd-5c26-b3bb-ea6db9c719ce", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-messaging 5.1.5.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dee23e4d-45b4-5e50-b869-e0527e21f051", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d7e92c56-b08c-594b-8c96-22bb19b51051", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:47657ce3-99b7-527c-8aaf-5821b2809b17", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:366cdffe-1ecb-53d2-b29b-36dc25085c27", "id": "CVE-2024-38828", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38828 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fea73d84-db7c-54f8-b21e-51bf48f33d38", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:682c3c95-f134-5374-8379-d1fc56a4ef86", "id": "CVE-2025-41234", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41234 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:86a1097b-ece6-53eb-af44-9c185dc47295", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:403b48c0-5491-5cdc-891d-1b365e6814a9", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:241a2f38-6b34-532b-ba51-1b295dd1f63e", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0d7c6bd2-a5dd-552b-a289-a8a813f66012", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:524a0860-9fba-57f0-9f17-c88e1488a1de", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2a56fb6d-fc84-5b15-bb24-8b4c11113964", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a9e73fb3-235b-578a-b59d-9538c1d221a4", "id": "CVE-2026-41838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41838 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8a2cc3fb-c6f4-52e1-9853-2717b1d7256a", "id": "CVE-2026-41839", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41839 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:560dc10b-ac50-5404-b3ba-0818ee1b349c", "id": "CVE-2026-41840", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41840 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:889ca1e8-32b7-5db0-8c81-d7f13a2c2e57", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8e8f7821-3381-5731-be33-e87bb185313a", "id": "CVE-2026-41842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41842 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5ead881d-1b15-54a4-86d5-a49a030a0565", "id": "CVE-2026-41843", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41843 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a664ddf8-a394-5622-a949-2a8fc3e01a6c", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f6897693-6ba1-5218-907b-f762f2e56009", "id": "CVE-2026-41845", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41845 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2b2e4698-0f2a-5be0-804e-0d9642cba31d", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6fde2f4e-19a9-54ad-bfc1-b801faf57c2b", "id": "CVE-2026-41847", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41847 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7f044625-73c0-5eb4-bdab-f0e753bdaf1c", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b4aabaee-9eb2-5491-bf92-13c478938ac4", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f38b7ff8-718e-5d78-a245-0fd9d965d66b", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:abbbf6a4-dfc0-504c-88ae-eebb4f3ffa24", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3c1184d6-4228-58e6-a498-cc0a6eab8be0", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3ba08f9b-91c2-58bc-92c5-49b1e3a5f50f", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8275895e-1c1a-5b64-9f77-9de79a5ee8f9", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.1.5.RELEASE-tuxcare.3" } ] }