{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f6d1c7f1-522d-5322-bc8f-24e6b551ca18", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-beans@5.3.31-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-beans", "version": "5.3.31-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-beans@5.3.31-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f50a82cb-1713-52ca-93d9-fd32a5f4c8b2", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.31-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.31-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:37704530-bb05-5f46-9f3c-b81754c731ba", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.31-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.31-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5373bd22-a61e-59c0-a632-cfe0bc7f7cef", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.31-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.31-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0c729714-d73b-5382-a5cf-761190384c99", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.31-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.31-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0bcbb19c-d12e-5994-a49a-7bf67b9ef890", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.31-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.31-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fd59d5e2-df89-5381-9cb3-cb85fa6ad7af", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.31-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.31-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d4b9ba70-5c4c-53eb-9aa1-f835fb5c9c60", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.31-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.31-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b14ebddf-13e9-5922-9b7f-dfe398a47f5f", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.31-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.31-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:88e9861f-ef83-5cea-999d-37b0bd7bc386", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.31-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.31-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:94859f52-ab86-5718-b6e9-f28109d0c5fe", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.31-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.31-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:52d0bd1c-2726-500c-b934-2e08c7be6e9e", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.31-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.31-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:52470eda-d42e-5e5b-a4af-3a5cb7fea615", "id": "CVE-2025-41234", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41234 is a false positive for org.springframework:spring-beans 5.3.31-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.31-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:446c2ea3-ab78-598d-a110-927385fd196f", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.31-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.31-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c22788b8-90a9-55d6-aee9-873e442bbdbe", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.31-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.31-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a33765f8-d280-54e4-9395-4a069a122802", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.31-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.31-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8adb3ef0-c82e-582b-ba7b-7e12707c4a6b", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.31-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.31-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f4594927-614c-5fda-939d-b13ec4c4c986", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.31-tuxcare.2 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.31-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.3.31-tuxcare.2" } ] }