{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:bdada64e-a843-5f4a-b847-238dcf5287be", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1", "type": "library", "group": "org.springframework.security", "name": "spring-security-rsocket", "version": "5.8.15.tuxcare.1", "purl": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b0d92901-4640-5d02-88fa-ef52fe750cf5", "id": "CVE-2007-1651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1651 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bdce329d-a193-5430-b102-a91ae9de6cd1", "id": "CVE-2007-1652", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1652 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f6fac5c9-a217-5f14-b595-71efe8a5fb8d", "id": "CVE-2020-5408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5408 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a8b272df-3fcf-5230-a27a-e92a8da7a5c8", "id": "CVE-2023-34042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34042 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1c69a718-d60d-5dff-82eb-72e5f6e45796", "id": "CVE-2024-38827", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38827 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:64c1437c-c1b0-5079-9724-3202a68b5cd5", "id": "CVE-2025-22228", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22228 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b6bc428c-19e1-56a8-982c-ee684f7c7396", "id": "CVE-2025-41248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41248 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ecdf87f1-9100-59d7-b105-459a110dbaca", "id": "CVE-2026-22732", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22732 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }