{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c7f47060-6e30-5538-b31b-b55ced87822a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-context-indexer", "version": "5.2.0.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c7dcaa60-3fc6-58fa-9d01-9b6b4d58ff18", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:56e95929-1005-500a-b01e-675d683358f6", "id": "CVE-2020-5397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5397 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:17ecaae7-feff-5f3c-8ef9-2857627e4b21", "id": "CVE-2020-5398", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5398 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:23eccf06-cc15-54a8-9380-a265400323d2", "id": "CVE-2020-5421", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5421 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9d7aead1-ccbf-5daa-90d7-4e5ee571ba64", "id": "CVE-2021-22060", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22060 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cdd13ced-49ba-5654-ac40-9820dd8c236b", "id": "CVE-2021-22096", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22096 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:08e90e29-2c7b-58c4-8536-b805a12344f5", "id": "CVE-2021-22118", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22118 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:83029dfa-90bb-537b-8029-e4550dc4ce4b", "id": "CVE-2022-22950", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22950 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:54a3fdf6-35c5-53ce-bade-4b0c33611d7e", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:029f2ad4-6eb8-5b8e-9d39-60d7b79ea1b0", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a40a5bf5-46f8-5439-ac03-fa108abb6856", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:246e00ed-d70f-5704-ac2a-4cb74d367ad0", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:70974f0e-c846-5cb3-9b95-1a22471fe9f5", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a4fba144-9551-5ee8-a2ec-4a0b68436c5e", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9251ea3a-5431-56fd-afc4-42fce76fe6cf", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8d47f8f4-4236-5a3a-b9d7-579471520e15", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a63321cf-651b-5f3f-95d5-95a5d9a044fb", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b6410ec2-bd21-5222-9fb6-c6b4f940a1d5", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c2fc6806-0373-56e0-af6c-d27546abfadc", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-context-indexer 5.2.0.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:40f9bb98-cda4-5136-b3f6-7928bc8315b1", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:58bd254e-af62-58ca-a821-6248bb41e81d", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:470c9058-782e-5a4b-83a8-785ff7c7bc46", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a78065bc-b09b-59fc-845a-17fde5d3e7c1", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bee2d4fa-d05e-5a5a-b076-fa43a31796d5", "id": "CVE-2025-41249", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41249 is a false positive for org.springframework:spring-context-indexer 5.2.0.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:47b3de56-a381-5159-9a46-b3b01d98a5c9", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.1" } ] }