{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:957d4be4-ce77-5ddf-9d2a-652413b54d96", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-context-support", "version": "4.0.0.RELEASE-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:154554f3-7415-596c-a08a-250ee7dca6ad", "id": "CVE-2014-0054", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0054 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f784e29c-ca47-5575-89d1-a23281db5bab", "id": "CVE-2014-0225", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0225 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ddd26ac5-bbe2-50b8-aee4-e64fdd732d41", "id": "CVE-2014-1904", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-1904 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b1776a0d-0c5c-5a4a-9cb6-3aa385fb7c36", "id": "CVE-2014-3578", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3578 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:95a57d44-f33b-565a-86c5-bb17b66be49d", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cf4dfddc-15df-5211-9c28-c49dc83a0391", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:28ab3981-7004-5ab2-97a6-2d83d7aa40f1", "id": "CVE-2015-5211", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-5211 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5861d77b-a64b-56bb-a1ee-17d774be2041", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b4e25442-ab6f-53eb-ad5a-98bd07b6ea4d", "id": "CVE-2016-5007", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-5007 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b529c9c-ffdb-5ce3-a865-5ed01c13f9e8", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b20794b5-6bab-5563-9308-5777303ea42e", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ae202168-9bb4-519e-9cd0-62c8c6e94671", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ee6c897c-31bf-593c-883a-183966668885", "id": "CVE-2018-1257", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1257 is a false positive for org.springframework:spring-context-support 4.0.0.RELEASE-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f00ab468-5a04-587f-8bbc-fdbefb8852e3", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2dc7da08-37ad-54ed-a025-61a5024c0ca9", "id": "CVE-2018-1271", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1271 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f3edd764-0734-5ef8-9a43-ea7c2cb0227e", "id": "CVE-2018-1272", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1272 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8b5126b4-55b7-5f6c-93d1-15b103433046", "id": "CVE-2018-1275", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1275 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6a65c931-68af-5423-a985-80e187f429d0", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bb6ee9a3-d635-542d-87aa-c6baa0f267a2", "id": "CVE-2021-22060", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22060 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0d89b165-2ff6-58c0-8ee1-95d48c56b6d1", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f04c2ea5-cd2d-5759-bd83-3fbfe983c5ab", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0cbbb3dc-6bee-5e6c-ab6b-cf00da42e068", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5ea97d58-2f46-5701-b924-55354fe34176", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2e69bb3f-1295-5a71-a9ff-3754a227353a", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ed31a028-1f75-5d92-807c-058e85ed4b67", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3de7a9c8-3696-5198-b77f-d480bf5dd9cc", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:97215e7c-eee0-5341-807b-ce6dcc6b742d", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ee4831de-bc3f-52db-962b-660c602e7f3b", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:06247b90-cea7-56ed-9414-7436fc9d292a", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:847c757e-1a5e-5bb8-9ac5-37cee30b81c3", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d0d070e1-a90f-565a-aba3-f0c00a5ef57d", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:43aed19b-9ee9-5832-8f6a-9989d05251f7", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:018cb61b-fabf-5565-bb93-9185515fb558", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:62c7ed89-0bc1-5a1d-9c9d-d0e9bd391e0d", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ccb6771a-b78e-5b6f-a6ba-9c0b36d8dd71", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c483bdc5-08a3-535c-acaf-7ea70e603550", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e49202a8-fd60-5f23-9cd7-afcc619070fb", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5a2e71f0-64d5-5551-8861-684e104e2262", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c0d983fc-8e7b-58dd-a152-6d453028e574", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:49c33d1c-55e7-5758-b855-c77b0ae25c0d", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-context-support@4.0.0.RELEASE-tuxcare.2" } ] }