{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1afc5ecf-f1e3-5448-a512-ab38c74ae5b4", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-context-support", "version": "5.2.0.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e0c6879c-47d8-50c1-9d4a-5334b1acbe82", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:28229807-e367-5691-9c07-7807089b0adb", "id": "CVE-2020-5397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5397 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c3a6ae21-f018-591e-b7dc-02bac3ec5d96", "id": "CVE-2020-5398", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5398 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:eb5a1823-50c9-5f60-b8c5-72a2978ee4a1", "id": "CVE-2020-5421", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5421 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:00a195fa-f630-5d3f-b64f-2e4a6a0fb62c", "id": "CVE-2021-22060", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22060 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:df63d7fd-ae8a-5634-b8ee-fa56435e976a", "id": "CVE-2021-22096", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22096 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b6a527d5-17da-5e9a-94c5-f5b9ef775671", "id": "CVE-2021-22118", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22118 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2a08e71e-58b9-5879-a7a6-7b0aeb10a931", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f27af9ec-9582-5143-b65b-b3727393bb52", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:80edab2f-fea3-59ff-92b2-c7f8c351466f", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:28e32ff7-affc-5864-98dc-449ff923c31b", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c611daeb-98af-511e-a4cc-8a7015c13821", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:04245a02-8c37-5ea3-9ad9-4ad70cd7d6aa", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b38690e4-37b4-53c0-b8ee-f6040b6f5ed3", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a5207606-cad7-512b-9f0d-feb1dd8db9fe", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:73105264-e7f7-54aa-9982-c2e839d6fa77", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b81052f8-7967-5da6-b6aa-7a0b89a1905c", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:df70561e-840e-5e26-bae4-6baaed7ca7b1", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d87c3256-6c04-5cbd-8a37-0f482905d2c1", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-context-support 5.2.0.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bdb7d607-52a6-525b-9647-bc42c0061dd6", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9b826d8c-38b9-5427-84f6-17e29bbfea67", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8cebec99-0bd9-53db-a7db-f78531f1ed83", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a0530b8c-095c-5c54-a235-ebfcad3e64a2", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:34e4edca-73e3-575e-ac3d-1de8d1ac818b", "id": "CVE-2025-41249", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41249 is a false positive for org.springframework:spring-context-support 5.2.0.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:06d8bf55-a1ea-5785-97fc-978ad8ea2be7", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.2.0.RELEASE-tuxcare.3" } ] }