{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7333959f-8765-538f-97b3-d1c4c419de1c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.4", "type": "library", "group": "org.springframework", "name": "spring-beans", "version": "6.0.23-tuxcare.4", "purl": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2bcd770f-3b29-51dc-afbf-0df7462a869f", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 6.0.23-tuxcare.4 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1550085d-b93b-54aa-b0fc-0de0f8b0ba88", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fa927223-fea0-55b8-9e04-e64c0be940a9", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:163c3af5-e3f7-5920-89e8-e3dc6076cfcf", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c7b4bde3-cb6d-563b-af5e-9f58d52d2948", "id": "CVE-2025-41234", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4414c106-5ce8-5f24-9f27-874c1cfc6980", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 6.0.23-tuxcare.4 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ebc349d6-32c3-55a9-9999-ca156c17e3e5", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 6.0.23-tuxcare.4 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d8c4e16f-ef61-5fdc-9458-0696d2e246fa", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 6.0.23-tuxcare.4 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ccd46016-ead5-5c4f-a31c-fe2e3ac67a7d", "id": "CVE-2026-22735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22735 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c7d57b3d-0d04-54ef-9168-2d2eb0b96cff", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 6.0.23-tuxcare.4 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9ee34830-3ab9-519e-a254-55d7a9a0872a", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7528bf37-69b1-57b5-8f4a-c13ed183082c", "id": "CVE-2026-22741", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22741 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:13fb5e75-e20b-5cf8-8e7a-451f52429ceb", "id": "CVE-2026-22745", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22745 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.4" } ] }