{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:13bd8eb1-e861-58bf-8ed5-4eba9f2704f8", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1", "type": "library", "group": "org.springframework.security", "name": "spring-security-cas", "version": "5.8.15.tuxcare.1", "purl": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f5ec3228-1fcc-59de-9c8b-a4150f33070d", "id": "CVE-2007-1651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1651 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5044f70f-cbc8-5bdf-8551-315201ee9ded", "id": "CVE-2007-1652", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1652 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f3aad42-7261-5daf-ba27-3459f437f62e", "id": "CVE-2020-5408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5408 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ceb24541-0a04-52cd-9310-92fc06e34ab1", "id": "CVE-2023-34042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34042 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c46fc605-d326-5623-9ba4-cd9256cbf409", "id": "CVE-2024-38827", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38827 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9888d904-a922-5a65-b571-34191df8b3e0", "id": "CVE-2025-22228", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22228 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0a617192-f1bb-5aa2-8ca1-a144af2cff3b", "id": "CVE-2025-41248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41248 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:654736ac-3312-538d-84a9-71fc705ec426", "id": "CVE-2026-22732", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22732 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ] }