{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:2af341e3-557f-5f43-b283-fe77f3d48dc1", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.security/spring-security-test@4.2.12.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework.security", "name": "spring-security-test", "version": "4.2.12.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework.security/spring-security-test@4.2.12.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:53fac4b1-d7e0-597f-8feb-2b8e97490274", "id": "CVE-2007-1651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1651 affects version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@4.2.12.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5934580c-e61c-5bc1-8e08-5e2600f70748", "id": "CVE-2007-1652", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1652 affects version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@4.2.12.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a9856542-c2cc-5b44-a05e-145146f13320", "id": "CVE-2019-11272", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-11272 is fixed in version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@4.2.12.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ff8a1f38-b8db-5b64-baa3-f83e8113204a", "id": "CVE-2020-5408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5408 affects version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@4.2.12.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d23acfff-492b-56ec-abd7-44b1e259743b", "id": "CVE-2021-22112", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22112 is fixed in version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@4.2.12.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6500fe44-44f1-5a20-a284-109e7f046c7c", "id": "CVE-2021-22119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22119 affects version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@4.2.12.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:237e140f-8049-5c4f-85ad-0121d0f85530", "id": "CVE-2022-22978", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22978 is fixed in version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@4.2.12.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:33679a93-8bbd-5969-8405-a39b74db70f4", "id": "CVE-2023-34042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34042 affects version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@4.2.12.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:88779a9d-7a48-5107-ab3a-ba6b59666bf7", "id": "CVE-2024-22257", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22257 is fixed in version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@4.2.12.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a39487fc-7be7-5a2d-8fa6-a133b163e24f", "id": "CVE-2024-38821", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38821 affects version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@4.2.12.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d4156ac6-728d-5f9b-a75f-865b1386b17b", "id": "CVE-2024-38827", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38827 is fixed in version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@4.2.12.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9f45a87f-1eea-5dbe-b863-875b450b4cb0", "id": "CVE-2025-22228", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22228 is fixed in version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@4.2.12.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7ecba6d6-de69-5ddf-a8e8-38de9a33d710", "id": "CVE-2026-22732", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22732 affects version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@4.2.12.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@4.2.12.RELEASE-tuxcare.1" } ] }