{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b8c399fe-add9-5673-865f-585fd43c2401", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-context-support", "version": "5.2.0.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:53f58db2-310b-5e3d-a67d-356ecc7b6543", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f1790c72-3847-562e-ae19-c8fbc8581a32", "id": "CVE-2020-5397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5397 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:abc91190-2c90-5b06-b244-54128ae93d1f", "id": "CVE-2020-5398", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5398 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e5a14c8a-1baf-517f-9db6-c600ad0fd0a8", "id": "CVE-2020-5421", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5421 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ab8b379-c303-55d3-b6e8-b255f600533a", "id": "CVE-2021-22060", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22060 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:01fcfe78-1342-54c3-bce2-e81907109de5", "id": "CVE-2021-22096", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22096 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6dde6613-52a0-5d66-8b7b-e8c9084afc92", "id": "CVE-2021-22118", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22118 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef703de3-07a6-537f-9925-d13b1c6f4294", "id": "CVE-2022-22950", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22950 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:16759466-bd9c-5e84-a0d5-e57a237590c5", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e6640262-c066-5f35-8a3b-c7c774235798", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6d6aa073-2f5c-5cc9-bac5-7bd9e5aae766", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:21b3c2cb-dbce-56ea-a02c-4b6ca61055fb", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:56b62bb8-3d6e-5861-94c8-947395fa8740", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0c48bd38-2193-5586-a876-9101ca44e344", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d759e299-1606-5303-873a-7271ca4d15e2", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:562ae2c0-f484-535d-8475-9ff7f6f9eb59", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:640f2ca0-dc16-5512-b121-46ced2796686", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0b78a5d4-9a46-5e23-b22d-e07b29fd44ce", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:791ab22a-6685-5068-99fd-81277cd05b58", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-context-support 5.2.0.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62d4c484-7e9a-559d-8d1a-9e2bcfa3661a", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d05d6ed1-2a4d-5503-85ca-af7084f77032", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cfe8f1ac-0401-5557-93df-489f3fb0cd35", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:87c159a3-70c9-5251-8b78-1e970e947f3b", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:06888aba-55b3-58fa-829a-206d645cad55", "id": "CVE-2025-41249", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41249 is a false positive for org.springframework:spring-context-support 5.2.0.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b679651a-1fbf-55be-8765-d1a2366e9e8f", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.1" } ] }