{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ee74aa7e-fefd-587a-8949-af68d1c4d65a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.security/spring-security-ldap@5.8.15.tuxcare", "type": "library", "group": "org.springframework.security", "name": "spring-security-ldap", "version": "5.8.15.tuxcare", "purl": "pkg:maven/org.springframework.security/spring-security-ldap@5.8.15.tuxcare" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6bac49d6-9de9-52f0-b12d-d17637c71b65", "id": "CVE-2007-1651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1651 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-ldap." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-ldap@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:8726331b-1e7d-58d7-bec9-dc4560763abb", "id": "CVE-2007-1652", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1652 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-ldap." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-ldap@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:3c0b31cd-c447-52a1-b236-d17462174760", "id": "CVE-2020-5408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5408 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-ldap." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-ldap@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:6246dab0-cb8f-5c0a-8b5e-ad0b6c0811d5", "id": "CVE-2023-34042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34042 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-ldap." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-ldap@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:99a2b4cf-536f-5777-b339-0404a61e1aab", "id": "CVE-2024-38827", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38827 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-ldap." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-ldap@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:bbeeccb7-62b7-508a-beb8-65436ea2c83f", "id": "CVE-2025-22228", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22228 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-ldap." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-ldap@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:97b1cef4-0f67-5171-9b51-388f5860eb97", "id": "CVE-2025-41248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41248 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-ldap." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-ldap@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:ab64ceab-e767-5ce2-a6c6-bf322799af5d", "id": "CVE-2026-22732", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22732 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-ldap." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-ldap@5.8.15.tuxcare" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.security/spring-security-ldap@5.8.15.tuxcare" } ] }