{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0b06e430-b8a3-5f2a-8d5b-098269d145fc", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.security/spring-security-messaging@5.8.15.tuxcare", "type": "library", "group": "org.springframework.security", "name": "spring-security-messaging", "version": "5.8.15.tuxcare", "purl": "pkg:maven/org.springframework.security/spring-security-messaging@5.8.15.tuxcare" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a4ebf97c-6204-5e44-9bf6-b4b02d487586", "id": "CVE-2007-1651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1651 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-messaging@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:9645b1b4-164e-575b-a058-eaba02988436", "id": "CVE-2007-1652", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1652 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-messaging@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:1fc9c2c1-d4ce-5ac1-920b-4acc28b5cdcd", "id": "CVE-2020-5408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5408 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-messaging@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:d42fa554-37e1-5c78-989f-9ac70f2c401c", "id": "CVE-2023-34042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34042 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-messaging@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:85f6cc4c-da2b-56ee-829a-6a16263f4e07", "id": "CVE-2024-38827", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38827 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-messaging@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:5ca2f704-46f1-5a80-ac08-3d03002afa6b", "id": "CVE-2025-22228", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22228 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-messaging@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:dbf3a86a-7709-5144-80d1-9fc4bd2e4844", "id": "CVE-2025-41248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41248 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-messaging@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:776f9f5e-db19-5e57-b0df-c1e71819281e", "id": "CVE-2026-22732", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22732 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-messaging@5.8.15.tuxcare" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.security/spring-security-messaging@5.8.15.tuxcare" } ] }