{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:98a5f404-1e56-5407-ab4f-726d7c1a9e3f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare", "type": "library", "group": "org.springframework.security", "name": "spring-security-cas", "version": "5.8.15.tuxcare", "purl": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6814d28b-b2d9-526b-8913-86305396a22a", "id": "CVE-2007-1651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1651 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:4ba06283-6234-530b-9282-e0579cd83f31", "id": "CVE-2007-1652", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1652 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:fd3568d7-2109-5638-90ea-446d887bedef", "id": "CVE-2020-5408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5408 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:13e3566a-9c3b-5d6f-82e7-49eb02b90387", "id": "CVE-2023-34042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34042 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:1b6f78cf-c3a1-5056-971d-58dfefa65e83", "id": "CVE-2024-38827", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38827 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:2bdc74e9-ad5e-5247-8ce5-6dec6f877f32", "id": "CVE-2025-22228", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22228 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:78ae1836-c169-5a55-96c2-7b3123a27be7", "id": "CVE-2025-41248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41248 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:0aac7a6b-2ff0-56f8-be3a-60bcb1cc9e29", "id": "CVE-2026-22732", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22732 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }