{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:549b9b2a-ee5b-5541-a82e-103c63a5c46e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-beans@5.3.24-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-beans", "version": "5.3.24-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-beans@5.3.24-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2044ef98-b7d7-55e9-b3f4-00ad0219b100", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.24-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e74d45ee-384b-581c-b995-6ded3b22479e", "id": "CVE-2023-20860", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20860 affects version 5.3.24-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8a7d546b-c5d2-5c9c-ae86-c18be095d0ec", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7ec33f95-957f-576e-aae7-a588db63c6ad", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 5.3.24-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aef18404-c0d4-5c7a-b654-4bef8efe305d", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:784fc6da-30a6-5470-94d5-7e51f25f2062", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 5.3.24-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:57c17176-7a61-5bdf-943b-6032c923db4e", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.3.24-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a619e235-b374-5951-8faf-2e33c11c19e6", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d0301342-9da1-5535-8108-145354f1fa70", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9bb63f99-a731-5063-ade8-ae54dcb77cb0", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f302ae39-7e1a-532c-8368-145190bd99ba", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:34f344dd-b2d1-58ff-9d1a-ce11ca853613", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a38a17f8-1053-56c2-9aa9-013a00d76863", "id": "CVE-2024-38828", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38828 affects version 5.3.24-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e40b4655-ff46-5cbd-9b9d-d7d019453dec", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fa378871-0e39-5af6-94c4-959659413f61", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:578c9d54-030c-5684-9473-170e2cf8da36", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fb21dfde-b363-5e6c-8909-4745bf93c04b", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:985bd50a-21a5-5d24-a9da-ce64a73087b8", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.24-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:233bfa74-20b5-5065-b107-2d7fb4edcf6c", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.24-tuxcare.1 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.24-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.24-tuxcare.1" } ] }