{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:686b540e-0f40-5c65-8687-b563b87a0286", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare", "type": "library", "group": "org.springframework.security", "name": "spring-security-oauth2-client", "version": "5.8.15.tuxcare", "purl": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:fa8a2d88-3f25-5e67-8da6-8e9b1112a612", "id": "CVE-2007-1651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1651 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:45d58dee-7a65-59b9-8b8a-490a22966f5c", "id": "CVE-2007-1652", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1652 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:c50fbcf2-ddf7-58cb-9cb0-69e59af353a6", "id": "CVE-2020-5408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5408 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:ce4ff870-06f1-5602-af4c-62f35cdc3544", "id": "CVE-2023-34042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34042 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:1b0a0c60-adc4-57cf-9dc6-e2551e040d4c", "id": "CVE-2024-38827", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38827 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:662484fa-2eea-5c54-95f1-2733d6e97b3a", "id": "CVE-2025-22228", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22228 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:e8770521-a395-559a-a193-a1a722bb682e", "id": "CVE-2025-41248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41248 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:6a7a0007-84d9-5680-be89-9ef92a16cf6a", "id": "CVE-2026-22732", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22732 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }