{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a5e37427-030d-510f-a384-6776174769a0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-webflux", "version": "5.1.5.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c06e438a-b5b2-5b38-9485-7b6f66324727", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8f974dc1-d14a-5005-9b9c-b133187b6fd3", "id": "CVE-2020-5398", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5398 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e89f4479-b69f-5cd7-af68-f2d721a67dd0", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7025e83f-0f48-5157-a3b0-2004de939824", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cdcf0b4f-6df0-5b62-bc9c-6709d9a0ee30", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0d4637b7-8e2e-5cad-b926-4132f4b78223", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9254855f-15a2-5fcf-8948-2f98e5f3974c", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a9bb6d74-2496-5f84-a886-7c2db20db864", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:91ffb7a9-1742-5253-95c2-4d31854b4a98", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:143e8922-9c1f-56c4-a9e4-59405e28f634", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:692b895a-cb49-586f-86a4-fc7b587bbabf", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b2e0de15-d984-5773-91d6-d452b2ea6eee", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2e1442a4-9a28-5db3-b126-8d9d17afbb03", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a901b613-7aad-50d7-b653-4811ae1ec5bf", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e685028b-0827-50a6-a8fb-4a8f41439111", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:79131afa-0121-5fb3-94d8-bd280d5e1e3f", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:42898ea1-9354-5ecb-921b-78c16ff9bd9a", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-webflux 5.1.5.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:520e82b8-6faa-508c-b7c2-b6f2f086644d", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ab77f7c5-9211-55e5-8d87-e75473bb4a7c", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5a3272e6-f2a7-534f-abef-a239d4699ec6", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e363d178-cbb8-5b51-b989-6496700be852", "id": "CVE-2024-38828", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38828 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:44050b03-266e-5fae-ae3c-556e0f0dad99", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a4606739-a6d3-505e-bc37-f055bd510154", "id": "CVE-2025-41234", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41234 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:837daf0d-6e1b-5f54-881f-4cc06fea6d7e", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:14d05b58-12a4-5aa1-8fee-b03ff97b5c1d", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c9efe25d-64ce-599a-bdd8-b6e053b21fe2", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f36ec3d1-34b8-5e4d-8d27-8a2ae1646347", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0d809124-3b86-5f7d-b8a4-16dce859b854", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b4f924c1-084c-5718-be70-34125002e0ee", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2b2f6966-dd08-5075-9271-b18ccac90bdc", "id": "CVE-2026-41838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41838 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0805a4b4-4e7b-5279-84f5-0fb950513cd8", "id": "CVE-2026-41839", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41839 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7cb3b230-66d6-599b-962c-4e0306431cb3", "id": "CVE-2026-41840", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41840 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3e050f3b-40d8-5653-a2d3-e1168b3b97a8", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a1b8a83f-3960-5b74-92ba-7d36946daad0", "id": "CVE-2026-41842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41842 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fb292e3e-8e40-5a54-812b-164b27f380a4", "id": "CVE-2026-41843", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41843 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9a1ce375-a40e-583c-9345-511d3b165881", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:15ffdb0e-fc51-58be-893e-2889fa1a8af2", "id": "CVE-2026-41845", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41845 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7fa91d48-3ea3-5e51-9c4e-acaea2387a75", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ffb2250b-ea29-57b0-90e6-6fe9230374c3", "id": "CVE-2026-41847", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41847 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ba32c53b-bd65-5c71-9567-0147b2073d4a", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e60f79d4-8379-5ba9-8472-2baf79169989", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ef206b61-d65c-5ec8-aa43-1cd33a0f80e7", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:48acb91c-e373-539f-89a3-575742e6a594", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:75b61d23-2dfc-52c7-8fae-b424213c08ac", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7a202192-5e3b-55aa-81e1-1575eaaadba0", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:deb21bfa-2367-5c28-a4f5-77b0d7b5dde0", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE-tuxcare.3" } ] }