{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e9bf3e86-8f88-52a0-9f5b-0ba864f4994a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-context-indexer", "version": "5.2.0.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:55d4022f-2260-5d40-8ebb-0703383bed9c", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1943b65f-71e3-5565-83f9-acc3e928942b", "id": "CVE-2020-5397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5397 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0b908d43-6d08-5432-acdd-d0c6eb6611ac", "id": "CVE-2020-5398", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5398 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cb7b652c-6943-5fbd-9248-b7c0d9640dde", "id": "CVE-2020-5421", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5421 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4d21e3a3-3436-5c4d-be1d-e6d50d20ef39", "id": "CVE-2021-22060", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22060 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7c54b995-4184-5e92-be02-235c15916670", "id": "CVE-2021-22096", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22096 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:58b1dc10-8714-5ff2-b120-e30003270cdc", "id": "CVE-2021-22118", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22118 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:821ca304-7722-5b46-b589-db47c5489443", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:63dbe767-2134-53c0-af35-de218641f205", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:717c7d2b-9be2-504d-8514-dbdf03dc8546", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2f4474b6-6ba1-5699-bf95-b3ca2ededd9d", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:60323af8-d63c-5921-9283-1b9499a63ed0", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:97595610-4367-522f-a8d0-e318b9dfe5a5", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:da3d35d2-86ec-5fdd-8c34-88489dc51d54", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:23d5857b-f1f3-5341-90b5-6a03da554c47", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5cc5d7cc-e788-5daa-a397-f2c2496be1da", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:37cc2514-479b-52a6-ae18-3697e6fac564", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7e355183-a1ac-5ac3-ae9a-9d7fd3e9017b", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:289d95ab-a09f-5336-8ead-d2a8501fa4d8", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-context-indexer 5.2.0.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:91b47552-1ad6-5fc6-b223-43a8437c3c8a", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3bde958c-970f-5b25-bbe1-e7e2486407bf", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d46d8db6-b90c-5ef4-a459-9e6a29680256", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:10505d0f-eac5-54fc-8a3e-00d7b1007d36", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5bc13bdd-963d-5105-9ba2-ed797ea4f00d", "id": "CVE-2025-41249", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41249 is a false positive for org.springframework:spring-context-indexer 5.2.0.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:07f3d269-912f-553d-9760-219be3addfa1", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.2.0.RELEASE-tuxcare.3" } ] }