{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4c77c495-efe3-59f9-9630-5ee33324f5cd", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-context-support", "version": "4.0.0.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:52e6a257-0a94-5abb-b280-f893077991b9", "id": "CVE-2014-0054", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0054 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:52576db7-547a-52ee-b3cc-d761f7e4613f", "id": "CVE-2014-0225", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0225 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:73a6de84-84c5-5077-aca4-e91cc3c8e65f", "id": "CVE-2014-1904", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-1904 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96d0d115-0276-573e-a05a-c5fe7b41f78f", "id": "CVE-2014-3578", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3578 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2e692037-9530-508b-a6eb-0dfeac544b95", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:21cb8cb8-cf6c-5ff4-bd1b-7a6cb9a39efa", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96b32b5c-0692-5cc4-bb22-aec662641214", "id": "CVE-2015-5211", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-5211 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:09b011cb-dead-5532-97aa-c41d07469b7a", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6344c08e-d660-5eaa-bc2b-dd333ca9ca1e", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e2965c0e-59f9-5131-8cbc-3712e85083f5", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1e9197b0-a054-5a16-8784-f7eb028fc728", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2e01e072-d0b7-5820-8238-4d4316b97b8c", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a7bf3eb1-ab15-57a6-a323-021bd31c2428", "id": "CVE-2018-1257", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1257 is a false positive for org.springframework:spring-context-support 4.0.0.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:95f0126b-3d5b-5e2f-a21e-4d5d08327eac", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ca399def-24fd-532c-a8f8-39a5f967d432", "id": "CVE-2018-1271", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1271 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:53809b0c-f41d-5097-9e42-4da622b788a1", "id": "CVE-2018-1272", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1272 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:776cdd6e-6a1b-5123-b480-ea86bf6c8dfd", "id": "CVE-2018-1275", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1275 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9f645e76-7140-5419-9bc7-9d5ffb3b0ae3", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:de53a552-4369-552d-a6af-2c897a80e69c", "id": "CVE-2021-22060", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22060 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b3411653-ae97-5fca-b532-d965ae2df49a", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:80505978-ddc7-5feb-8d1b-39326bd4f8bb", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d82507b1-e00b-5e1f-8f70-e5b6b34992cb", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:91b006e1-11d9-50a1-938f-398b537eae16", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9c586629-2894-54ee-9d69-a9687a0813b1", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e75e3142-2ff2-565f-ab20-fae5807d06da", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:39f5ba65-6992-52c5-9a3c-052a30d938e2", "id": "CVE-2022-22971", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22971 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e1471b4-12d5-50c7-a33f-025714e28bb1", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fc855b50-c469-5919-a14b-6edf22c9afd3", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:05eafaae-e15d-5363-af9e-60d27cebe023", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:98f04995-25b8-5e79-b659-772a22750a30", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:531354ad-513a-5a2e-b8e5-2fdaf32884ae", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:783d760b-b796-5612-9412-c246e7b3b94c", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:42c80e94-3ef1-52ef-a75c-6bb4deeeb4ba", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a4623215-47fc-5834-aa5e-bcb502eb5e18", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8657ed69-73b5-5d07-9706-8963924c075e", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6bf62ae9-f9b9-5bda-a8e6-636664415249", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5f8be691-74ba-5b7b-8d47-5475a939c323", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f557020d-71f7-51a5-9dbb-c5c67c2ee4aa", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:98578b09-51b0-5ef5-8855-939de392c83c", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d35714c-746e-554b-90dc-2f5f9658045b", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.1" } ] }