{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:92a9fc31-6b08-5bd8-9d5e-3d74b6fbfe2e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-context-indexer@5.3.27-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-context-indexer", "version": "5.3.27-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-context-indexer@5.3.27-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:983775c3-9d99-5740-94a0-8e8777965bc0", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.27-tuxcare.2 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b5c4f25f-6a16-5cce-b8bf-44a5167161d9", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:17faea49-1105-53c8-b7bc-b2064851437f", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ecf19084-e369-5982-9a34-bfda1826370d", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1b7f93f0-8fb2-500e-ab4d-8290538d357f", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7f27e876-2e46-5505-9eb2-559f3092129b", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5af8c902-8e44-5ed4-a189-9f9a49d11d37", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f7bae8f0-55fa-53c2-b0b0-0a0f7c35b850", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:28a38656-602f-512b-a2e2-a01087e0dbda", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:54d69f5d-9b53-539e-abcd-923a4111ece1", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:05a92b97-fed4-5227-8757-5df5c4fe105a", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:67fd26e4-2ab1-55a5-b2fa-6db51c982e81", "id": "CVE-2025-41234", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41234 is a false positive for org.springframework:spring-context-indexer 5.3.27-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:464b0091-f1a9-5e6a-93bb-f67d84869098", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e01858b5-93bf-5ac1-8326-922afab8887a", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 5.3.27-tuxcare.2 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9ee57fb9-f3fd-55cd-ac49-e6b1fe7381e7", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6c7c4d28-c1f2-557e-b8f0-a67d4262be22", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.27-tuxcare.2 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:78a14c6f-dccb-5ea2-a500-d6ab5c51b567", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.27-tuxcare.2 of org.springframework:spring-context-indexer." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.3.27-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-context-indexer@5.3.27-tuxcare.2" } ] }