{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0ecd23ce-1690-5687-9264-1da490d8b430", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare", "type": "library", "group": "org.springframework.security", "name": "spring-security-rsocket", "version": "5.8.15.tuxcare", "purl": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8f0b20fb-509b-5331-9c41-488348ba5170", "id": "CVE-2007-1651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1651 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:09e1e1c2-d926-5eee-84f8-f30112f202a2", "id": "CVE-2007-1652", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1652 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:61a6f5b5-8b8a-5b8c-9e0c-4d09c1ee10c5", "id": "CVE-2020-5408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5408 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:2849475d-6cf8-5ec4-9f9d-17c36399b5f5", "id": "CVE-2023-34042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34042 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:878212e2-ed71-5ea9-893d-74b27a13ac31", "id": "CVE-2024-38827", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38827 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:f1f27153-9820-5cbc-b5d4-71c1529fae0f", "id": "CVE-2025-22228", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22228 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:86db823c-9169-53a1-b625-de346e34826a", "id": "CVE-2025-41248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41248 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:8e9406f7-f1dc-5197-aa8a-07eab394261e", "id": "CVE-2026-22732", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22732 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare" } ] }