{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4334764f-70b1-54e5-b3ce-cacad1dd040d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-test", "version": "5.1.20.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b7e9df67-9869-5dc2-9a4f-5eb84b09b2b9", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a33e6e0f-4a27-583f-9acb-9a3872ee3eb5", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ebab478e-57c8-5ebb-9284-0cc7cd886de2", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:37712727-6fee-5f00-991c-da7b990a5f38", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9ed8ca07-0a86-511b-ad7c-631b3bdafaef", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a24f62a8-4c04-54e4-a3c1-07d532eaad0b", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:246bac6e-b1c5-51ef-b742-c56dd7cce920", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:531b9156-e877-5cdf-b9df-dd9d182b0eb8", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4dfcee8f-f55b-5160-91cb-bbd976df247d", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:538b9e73-098c-516a-bd5e-4dfa2a3db9bb", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:269c2bf6-ec5e-5d15-adc9-488ba5f8e9ad", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fa410c53-82f0-59cf-aeaf-3d7a1155b6fa", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5eb163a0-996f-53d9-bac5-fe525961814b", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dab2b49c-68b1-5ab4-abbb-acb7957c7084", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ef8998b-a6ec-5913-acc5-7adc2375fe14", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f8a41e60-ff8d-5e54-b600-620062c185cd", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-test 5.1.20.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9b375172-15e5-50e3-b0f7-f131cdb533a1", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:50cabc62-4bad-50d9-88e2-5b04669a0c98", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:527b2de6-3e92-58ef-a739-e49aa9f04728", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0912af9f-cd91-5d67-8920-df9aad3a204c", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2b7bf59f-63c0-5877-8bb4-c1d6a151b8ea", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a4080f20-4d0e-5306-80bb-ed81cd587dfb", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d58f24b-3fa9-5578-a1d6-ebd026e61a81", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:75a9bde7-e91d-5343-b8af-35b180ae5e5b", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:603a164e-ec15-58a2-9314-90fd14b97624", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.1.20.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-test@5.1.20.RELEASE-tuxcare.1" } ] }