{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1060bf20-d5ec-53ef-a01b-cbd11ed6142e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1", "type": "library", "group": "org.springframework.security", "name": "spring-security-acl", "version": "5.8.15.tuxcare.1", "purl": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:70152c97-fc45-55b2-81a2-c0d1b4e99d38", "id": "CVE-2007-1651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1651 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c222e323-857f-5cb6-bb67-0d6322de655a", "id": "CVE-2007-1652", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1652 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b86ee2d0-7e59-5518-8ea1-5317b6d91be6", "id": "CVE-2020-5408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5408 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aab4c886-24c0-52dd-b880-fc40852c29d0", "id": "CVE-2023-34042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34042 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4d7b98ca-62c6-5b31-a91e-a2209b5b6214", "id": "CVE-2024-38827", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38827 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:16f0932a-dee6-59ea-9d06-82b150680095", "id": "CVE-2025-22228", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22228 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d869f74d-3431-5cf1-b4a5-4052612c45e5", "id": "CVE-2025-41248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41248 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c20d3367-202a-5def-a27d-8d001ec215d6", "id": "CVE-2026-22732", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22732 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ] }