{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6a6b44b1-cc22-5dad-904f-c5d7659dfd38", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-beans@5.3.29-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-beans", "version": "5.3.29-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-beans@5.3.29-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:41134d84-e2ea-592c-bb98-8c213157634c", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.29-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:22c72c8a-7ed8-59bb-bebe-696960d61d7e", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.29-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cb751c55-d478-52a6-b833-ad2d488ba4a6", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.29-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:49b65cc5-fb57-5ac8-b860-79f6d57926a6", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.3.29-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:85ca5b10-d85c-5a4b-b799-3ab7251368fa", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.3.29-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2e6557a2-27e5-5726-81eb-c627212803f4", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.29-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:58d1eff6-e36e-5700-9ae4-c4587ef8112a", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.29-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3963f4fa-7bb1-5268-825d-7e356060e151", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.29-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d8ecf6de-8374-53f8-88f3-baa05dacb735", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.29-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a709ae61-661c-5482-9f4f-3d0138d19b00", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.29-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:75b681b4-beba-5edf-9ee2-c65288d7634d", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.29-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ab90ed0f-5902-571a-a43d-667181e51689", "id": "CVE-2025-41234", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41234 is a false positive for org.springframework:spring-beans 5.3.29-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1b878a1d-f23f-5a46-8061-a00397fe8173", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 5.3.29-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e4d21ac8-9eb2-5171-885e-74d6b7f68e23", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 5.3.29-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ad48d6eb-832d-51c4-b6e0-003d9a01d87c", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 5.3.29-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9d3f867b-5140-525c-810d-bf19c847863e", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.29-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dd9bab1c-f020-5cdd-b562-448a8590f845", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.29-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.29-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.29-tuxcare.2" } ] }