{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7d4a9e6a-84fd-5337-8dd8-7a365479f0d5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-webmvc", "version": "5.1.5.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:19fb7c18-af63-540b-9a09-c78fe11233b8", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bacc74d3-dcad-5525-8045-f95b0abe5473", "id": "CVE-2020-5398", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5398 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:edd49b53-a47f-501b-a29f-e29fc4e6305a", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:07614339-5e0a-501a-a3df-d35dd01ee3b0", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:20a6eaa9-741f-5dff-b785-6af5ec0ee605", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a9afc4e3-bb6e-5558-a7c4-99886fe89c1b", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fcf0b8c1-1e95-5cc1-9e02-6b45ff32ffab", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e0609a1d-52a9-5ea5-9567-d9047d5bf6b9", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a4e068a3-7e74-5fee-9a50-3a333a8031a2", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d1a9ed9a-db52-5c66-b403-c7aad2a96637", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:74d80767-73cd-5469-8ab2-b33cf310df1d", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c2bb698c-adb0-5762-920f-135adcb579ac", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0cd7f22c-813e-59f3-be15-95a9b26351ed", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:084e59b2-b686-54ef-b7d6-1f49b0dfe60b", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9564c02e-b34f-5c8d-9399-1a2e60463dae", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:980f1983-bcde-5a03-bd74-9a6041b27b44", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1b25a320-1458-50a6-aab6-c2fcaeb2b113", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-webmvc 5.1.5.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4e9f561b-86df-5adb-a816-12b5b284c3ac", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:21ed1d74-8f45-5b95-abe6-0a4a52264c19", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:300b83d2-ccfb-5a84-8c65-08dbba121c98", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:43d0d1d9-de0d-5f0d-92ea-2b77f6e5751a", "id": "CVE-2024-38828", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38828 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f32247cd-5ed1-5597-af61-3cca9241f2f0", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:108cff33-0f56-5447-9f45-7bb83cf311c6", "id": "CVE-2025-41234", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41234 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:137b0935-cde0-5924-a356-c7a5b98f6378", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:30955012-db50-5ece-8d09-61a57689eefd", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:877f9ed1-378d-5c76-9d1c-a8704ddb14fd", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:652c0855-6933-59f8-aec8-1bf88d276254", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7f4b2896-f670-5f23-8d88-31ba50b3bf9b", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5ae6e1da-4976-5016-9488-89054795ef01", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f7a993a5-0bd1-54b0-8e60-c981db4f938b", "id": "CVE-2026-41838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41838 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8b660872-3971-5ab4-98f3-6fac9ed660f6", "id": "CVE-2026-41839", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41839 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2b39a311-c221-5549-809c-4abe8aa43a7d", "id": "CVE-2026-41840", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41840 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:af4a9b63-96c8-558c-b533-5a4ea2388195", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4650a7a5-5946-5ef0-99f9-5832b52326c9", "id": "CVE-2026-41842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41842 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3af63fb3-8908-59b7-88eb-b8998d539eef", "id": "CVE-2026-41843", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41843 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:552aef9e-2aca-5e5f-b6bd-a1dc8708531e", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a8ad1a2a-b3a8-5f65-ae37-a956a48473ac", "id": "CVE-2026-41845", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41845 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7d321f89-c644-579d-bfc5-46478d131c67", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b924fe39-95d7-56f2-a69b-1d8a86c3bb9a", "id": "CVE-2026-41847", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41847 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9687786f-df45-58d5-8768-bcbbde8ddd67", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e05261c9-3919-5b2b-a929-42fb8d1d2f56", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ac175451-67d6-53a3-bf31-a6c1debcd22d", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:833fa470-cf9f-5470-9317-7d99a992fca4", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a7679961-384d-5296-aa62-2e082612ed56", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:23959249-460c-5527-bd67-1f4911ecb6ab", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4fcb30da-9600-53e1-9f19-61d47d07c821", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE-tuxcare.3" } ] }