{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:652aeda7-6a3d-5bb6-ac29-13eec301d04e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-context-support", "version": "5.2.0.RELEASE-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b75d678a-8adc-5720-9a2e-84ef774017a9", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7ff0b136-05f9-5dff-8cc2-e2b9b5ccf615", "id": "CVE-2020-5397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5397 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fc522a36-d3c1-5e86-b572-7171b8069dac", "id": "CVE-2020-5398", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5398 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5569f334-93e0-59cd-b9b1-baaeaf692216", "id": "CVE-2020-5421", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5421 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4ecc8915-3fe2-5f03-a4c2-1e62766cd9de", "id": "CVE-2021-22060", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22060 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:60840ae2-9f34-5675-a443-1269c682b9a5", "id": "CVE-2021-22096", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22096 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6fd568d8-ae5a-5580-bbd7-bc89f43c17df", "id": "CVE-2021-22118", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22118 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1041cb16-3e9f-5432-b229-3b34354c63e8", "id": "CVE-2022-22950", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22950 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5f18f5a7-ad1b-55f9-81e5-3db5b319cb7e", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e688b4ce-d641-58ca-93be-80a38b36ee4e", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bc95b567-0a7c-528b-8e1b-915b23f8d542", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:84bac2df-4a36-534e-9620-bf1a88492793", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:28ae4dd2-ecc0-500e-b23d-8f33b92d2ce5", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aa1a21b9-f1c8-5dc4-a803-541fef8c8476", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ca2667cd-d64a-5135-b673-e7e187095602", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bd00fd3e-92cd-5278-8f44-3b6d6a72d643", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5de2d068-d4c4-5b3c-b3cd-f8734c856d6f", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:07e29432-e9b9-589b-a5d1-a1e43e18fcb8", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:236ef907-0f5b-5e0d-bef6-fb544e62874f", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-context-support 5.2.0.RELEASE-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c20410b5-8d7f-5b68-969c-dea2df2fb1d8", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4c4ad352-642b-50c6-b697-520eb8f519ce", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d6355a3c-fbc4-5063-bd91-90ac1be42b91", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dcf1c02c-6c3e-597d-bb9b-da779dea8af2", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7f217665-a7fe-5a36-8d6c-ededf647b9eb", "id": "CVE-2025-41249", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41249 is a false positive for org.springframework:spring-context-support 5.2.0.RELEASE-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7839eafe-6867-54d9-b85c-6e982a7a61ae", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.2" } ] }