{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7a3de36b-2153-5ccd-97be-d55cc8baf091", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.security/spring-security-config@5.8.15.tuxcare.1", "type": "library", "group": "org.springframework.security", "name": "spring-security-config", "version": "5.8.15.tuxcare.1", "purl": "pkg:maven/org.springframework.security/spring-security-config@5.8.15.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:88c919c0-5dab-5038-b863-fcfa3504d5b5", "id": "CVE-2007-1651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1651 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-config." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-config@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5f21ab6b-d69c-5e4b-8151-7a4ed4876b46", "id": "CVE-2007-1652", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1652 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-config." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-config@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d5fb54d3-6d1f-5704-80b2-98ba7d15e05c", "id": "CVE-2020-5408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5408 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-config." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-config@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a683f58-d67b-5dbe-97b1-da841170cdb6", "id": "CVE-2023-34042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34042 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-config." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-config@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:164bf141-f71a-5a54-83fd-3e21d79cc289", "id": "CVE-2024-38827", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38827 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-config." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-config@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da879ebc-bf0c-50c5-824f-6b20285f29ab", "id": "CVE-2025-22228", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22228 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-config." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-config@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:607a5cd7-cac1-536e-9bf7-c5f17f5a89f0", "id": "CVE-2025-41248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41248 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-config." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-config@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7733e70f-ac73-5411-b452-b427e644a598", "id": "CVE-2026-22732", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22732 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-config." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-config@5.8.15.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.security/spring-security-config@5.8.15.tuxcare.1" } ] }