{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4a991802-f51a-5303-8b93-ef555fac15b4", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-test", "version": "5.3.24-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:1a9267fc-9a78-53d6-ac52-7432f47c669a", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b75cb8a8-2179-56a2-a583-cc86cfccb30c", "id": "CVE-2023-20860", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20860 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c0419d8d-b343-5707-9bf6-4c6fb79f89eb", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:54aa910d-d5f4-53ac-b4c2-d9664eaf61d7", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4bd302c0-19c1-58c5-84d8-50a8139b3b90", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:651eb3d6-e9a8-5a1c-bffb-666afcf1d02c", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8570b303-5b0e-5227-bb47-2d6bff6cdabc", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3bec3b91-4a91-5d91-b895-94988c99d630", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e7d957e4-0a39-56e6-b517-20091a85901c", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:06dc024c-440b-5ac8-8646-7e276ea602cd", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a98e1389-f2e7-5a55-8cb2-7d9dc299ee07", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:38256727-ef4c-51fa-b950-0ac8280ea9de", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8ec39088-4ac0-58cb-af85-d4a7af8a1f63", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aa54c73e-0877-520f-ad2d-9c75c82b959f", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:58a47bb9-fad3-5757-86cb-989fb22768ca", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:56f56504-c4dd-537f-83b3-ec77bdf3055f", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:edfa59d8-98e8-5924-8686-84b8f20be59a", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f593ddda-c885-5478-ae44-1e5356290385", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7b6b84b8-19fc-5344-bd76-3dd5d37c7b49", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b7787f68-1783-55e9-bce4-abd629fa6faf", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:572852b9-52bc-5c6d-9fee-33f885dd51e3", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cdfd31f6-c4f7-51b5-b41d-dcd663db4fcf", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6f43f3ce-e5d2-5df6-8cf0-6c9b4658bb60", "id": "CVE-2026-41838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41838 affects version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8d04348e-f594-5f2c-a556-df4cc5946ad8", "id": "CVE-2026-41839", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41839 affects version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b4b3cb6b-ea17-56ba-ab16-65e56eb3799e", "id": "CVE-2026-41840", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2026-41840 does not affect version 5.3.24-tuxcare.3 of org.springframework:spring-test. Patches already applied: 7052da453285658215efc1dd5ecb0d472fde2de1 (already in target via 2c11852775 'Backport CVE-2026-22740 to 5.3.24')" }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7f23da34-bd69-52db-bc66-e31df00819ad", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:938c0ece-49b2-5c74-95ec-c8e529693dd5", "id": "CVE-2026-41842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41842 affects version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:159190e4-a5d3-5e68-b0c3-7554caa694d6", "id": "CVE-2026-41843", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41843 affects version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dd5b360d-dd72-58b3-ad34-51f81a7e8fe1", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bac8cb41-858e-573f-b195-d0398add06e2", "id": "CVE-2026-41845", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41845 affects version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c9d8f4fc-90ec-5ea5-8e7a-9d1e5cfe9be3", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:295f9090-a3e1-502a-828d-723c1935c3be", "id": "CVE-2026-41847", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41847 affects version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1c4e58b8-e511-50bd-a98a-6aa7aaeaa82f", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2bc80627-f04e-5a5a-90f9-626df9bac95e", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6f83f7a6-89de-5784-a294-c63046041ad2", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aca6195b-3421-52f7-b52e-64433dfc36d0", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:58109260-5ab9-58ee-a3ad-ef7c637de4ed", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a6f17004-76ef-58e2-b5d2-0b3043006d65", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:40fba8fa-2799-548f-8d0c-9a77b7d4ce71", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 5.3.24-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-test@5.3.24-tuxcare.3" } ] }