{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ee7b1359-5e3d-58a4-a790-c935c98e1cb4", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.security/spring-security-test@5.6.10-tuxcare.1", "type": "library", "group": "org.springframework.security", "name": "spring-security-test", "version": "5.6.10-tuxcare.1", "purl": "pkg:maven/org.springframework.security/spring-security-test@5.6.10-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2e62aa7f-f3e3-56b9-bcfa-9439c059775b", "id": "CVE-2007-1651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1651 affects version 5.6.10-tuxcare.1 of org.springframework.security:spring-security-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@5.6.10-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0cc94255-a799-5260-8d5c-6fc784d70147", "id": "CVE-2007-1652", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1652 affects version 5.6.10-tuxcare.1 of org.springframework.security:spring-security-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@5.6.10-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a70a597-4a37-5a71-b6da-03c573d01e79", "id": "CVE-2020-5408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5408 affects version 5.6.10-tuxcare.1 of org.springframework.security:spring-security-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@5.6.10-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:de007cb0-67d7-5de2-9912-fa6a249f3591", "id": "CVE-2023-34034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34034 affects version 5.6.10-tuxcare.1 of org.springframework.security:spring-security-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@5.6.10-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c297fd7c-0c26-5ac2-b8f9-14dea2a829cb", "id": "CVE-2023-34042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34042 affects version 5.6.10-tuxcare.1 of org.springframework.security:spring-security-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@5.6.10-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:74b3ce8a-63d0-5bc8-84ce-0de878bbce28", "id": "CVE-2024-22257", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22257 is fixed in version 5.6.10-tuxcare.1 of org.springframework.security:spring-security-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@5.6.10-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c4e1916c-8ffc-5f0e-9558-842f0ca30a84", "id": "CVE-2024-38821", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38821 is fixed in version 5.6.10-tuxcare.1 of org.springframework.security:spring-security-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@5.6.10-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9b611c9d-9032-5fca-9af6-69746ab005c7", "id": "CVE-2024-38827", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38827 is fixed in version 5.6.10-tuxcare.1 of org.springframework.security:spring-security-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@5.6.10-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4d0e3dad-81c3-5f46-96b2-c7bbf50f96dd", "id": "CVE-2025-22228", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22228 is fixed in version 5.6.10-tuxcare.1 of org.springframework.security:spring-security-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@5.6.10-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:48a1cfb4-f456-5184-8d57-e23754417356", "id": "CVE-2025-41248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41248 affects version 5.6.10-tuxcare.1 of org.springframework.security:spring-security-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@5.6.10-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6e5f1088-0e69-5c46-b8a9-cbb8cdf2f8af", "id": "CVE-2026-22732", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22732 affects version 5.6.10-tuxcare.1 of org.springframework.security:spring-security-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@5.6.10-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.security/spring-security-test@5.6.10-tuxcare.1" } ] }