{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:864c988b-26e1-58ef-94bc-73180b41f58a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.security/spring-security-web@5.7.12-tuxcare.2", "type": "library", "group": "org.springframework.security", "name": "spring-security-web", "version": "5.7.12-tuxcare.2", "purl": "pkg:maven/org.springframework.security/spring-security-web@5.7.12-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:1f3dddb4-094d-5f38-abcd-a5226c339d7c", "id": "CVE-2007-1651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1651 affects version 5.7.12-tuxcare.2 of org.springframework.security:spring-security-web." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-web@5.7.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f16c8074-e29a-58d0-8091-136e7e4b8977", "id": "CVE-2007-1652", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1652 affects version 5.7.12-tuxcare.2 of org.springframework.security:spring-security-web." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-web@5.7.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6658fc3d-e601-524b-9f7b-27c2b66bb01b", "id": "CVE-2023-34042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34042 affects version 5.7.12-tuxcare.2 of org.springframework.security:spring-security-web." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-web@5.7.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:22c85c84-8ab0-56f8-bfb5-a691f03f88f4", "id": "CVE-2024-38821", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38821 is fixed in version 5.7.12-tuxcare.2 of org.springframework.security:spring-security-web." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-web@5.7.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dd902356-6605-5b9d-948c-5da2814fe2a0", "id": "CVE-2024-38827", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38827 is fixed in version 5.7.12-tuxcare.2 of org.springframework.security:spring-security-web." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-web@5.7.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:58d5bbff-6286-5e44-b463-947305621ac6", "id": "CVE-2025-22228", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22228 is fixed in version 5.7.12-tuxcare.2 of org.springframework.security:spring-security-web." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-web@5.7.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2bc93746-6a4e-5f7c-9acd-c6af91eb37bb", "id": "CVE-2026-22732", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22732 is fixed in version 5.7.12-tuxcare.2 of org.springframework.security:spring-security-web." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-web@5.7.12-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.security/spring-security-web@5.7.12-tuxcare.2" } ] }