{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:94483a7c-27a0-5429-8099-ffc3132c36c0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-asm", "version": "3.0.5.RELEASE-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:25b30935-deb9-579f-a360-f3a79842790e", "id": "CVE-2011-2730", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2730 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fde3d3f4-5aa3-5333-874f-0e5e797cff13", "id": "CVE-2011-2894", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2011-2894 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b7dd8a62-3dbe-5bb5-a3b4-25c4201b2ddc", "id": "CVE-2013-4152", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4152 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3ea9ba30-9053-5684-8127-241a8a92edad", "id": "CVE-2013-6429", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6429 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cdd01cf5-f3c1-596f-b4f7-701131da611e", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:71d0ba4c-0280-5c19-b6a1-a90cf8601607", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:143daeef-fcfa-549a-800f-ded33495e68d", "id": "CVE-2014-0054", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0054 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e760531b-abca-5ea5-959f-19cdca0c36d5", "id": "CVE-2014-0225", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0225 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f853c11b-6544-5a8b-9e0f-27efe1535208", "id": "CVE-2014-1904", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-1904 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9511ba7d-b0c0-5e1d-b32c-ae4309bcce60", "id": "CVE-2014-3578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-3578 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d50047ac-be6c-50a8-a3e2-2f67b7327d43", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:819b0acd-b32b-5366-83ae-bf82f4b1b96d", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3eb66bd7-3ca0-5b2c-ab42-eb1399aaaea1", "id": "CVE-2015-5211", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5211 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b371a8bc-23e4-536b-a563-115fd51caedf", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:be87cf8c-f25d-5a42-9698-e745d61651d6", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:30989a74-dda7-538f-ba8c-0a518704af40", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:67c8b82d-60fa-5a1a-9843-03ed8c0e5b64", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:34b4bae1-c6bf-5e47-b567-2c8ffc47ecd0", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dfbf6648-275a-57a5-be15-8f8f1db8db53", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:46b9477e-0419-5157-a106-bd9d755df23d", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6289e190-7220-51d9-9498-b12f2336ea21", "id": "CVE-2018-1271", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1271 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:48ce459e-b6f3-5aab-8084-58fd465fe11e", "id": "CVE-2018-1272", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1272 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:320ee44d-c5a0-58ff-9a48-37bcb7fbfa96", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a547c314-c9d3-578d-954f-1dc836c8ecf9", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:71b2c1ea-5bd1-5a44-9464-6ff564996b2d", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:754d127d-14cd-5dcf-bb25-8aace072dc74", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3b76bb9d-1071-56df-a693-ca3e44062672", "id": "CVE-2022-22965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22965 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:22d78438-8a03-5410-88bd-beaa8392785a", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:da952b5a-3855-5b08-afab-6c79ac3ad7d6", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9132dc29-f499-55c9-a61e-34959838b4d1", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e05e64c5-4441-5c9f-a0e5-097a13ba0d0d", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:12706910-59c1-5d47-825f-2d85a1c1512e", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5efe2769-9e66-5d7a-87df-241e5bfc0ffd", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1ab55bcf-2fa5-5d22-b961-4556f295f2c4", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f56dd1d8-5b5c-5a64-be7a-8bd54f7cf78f", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5bc5806b-a233-553b-b1ca-95a5b44026a3", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2d420908-a479-56eb-88fb-c23634ab9f37", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e75d3898-010c-5522-81b6-349d896df9a4", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:02e4d206-bf52-5cf6-9cd7-3f73dcf65ad2", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5d43bf28-b3d1-5a6b-81f9-7bc377e13168", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.2" } ] }