{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1c1f860a-7f94-527a-a4ad-d42858f2226e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.security/spring-security-messaging@5.7.12-tuxcare.1", "type": "library", "group": "org.springframework.security", "name": "spring-security-messaging", "version": "5.7.12-tuxcare.1", "purl": "pkg:maven/org.springframework.security/spring-security-messaging@5.7.12-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c3d6a8ed-9a21-5ae1-b1e0-acd10ed591cd", "id": "CVE-2007-1651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1651 affects version 5.7.12-tuxcare.1 of org.springframework.security:spring-security-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-messaging@5.7.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a8811188-ef5a-554f-8ce9-4c5158a86848", "id": "CVE-2007-1652", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1652 affects version 5.7.12-tuxcare.1 of org.springframework.security:spring-security-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-messaging@5.7.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aee3216a-022a-5122-832d-6ac8b504efcc", "id": "CVE-2023-34042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34042 affects version 5.7.12-tuxcare.1 of org.springframework.security:spring-security-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-messaging@5.7.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:793c1ce0-b8fa-5185-b155-ed51fe693b14", "id": "CVE-2024-38821", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38821 is fixed in version 5.7.12-tuxcare.1 of org.springframework.security:spring-security-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-messaging@5.7.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5d197d4e-b55c-5a54-adf2-6ea192b8606f", "id": "CVE-2024-38827", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38827 is fixed in version 5.7.12-tuxcare.1 of org.springframework.security:spring-security-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-messaging@5.7.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3a96b591-e0e3-5108-99db-32a089f36320", "id": "CVE-2025-22228", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22228 affects version 5.7.12-tuxcare.1 of org.springframework.security:spring-security-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-messaging@5.7.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e4e0e67-ce17-5481-9f8b-659c3bb76669", "id": "CVE-2026-22732", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22732 is fixed in version 5.7.12-tuxcare.1 of org.springframework.security:spring-security-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-messaging@5.7.12-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.security/spring-security-messaging@5.7.12-tuxcare.1" } ] }