{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:85991d63-b7a7-5d02-925c-ca19ab8649f2", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-context-support@5.3.27.tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-context-support", "version": "5.3.27.tuxcare.1", "purl": "pkg:maven/org.springframework/spring-context-support@5.3.27.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:1a91f6e5-f7b4-5593-892a-1c7e73b31903", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.27.tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:348684fe-afce-54b2-a16d-9347b196636a", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.27.tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0900dc22-d250-5e38-8eda-1ff2c572cf2f", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.27.tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:914fb857-9b47-5277-ac3f-976b1e01e149", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.3.27.tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ad8aa716-d39a-5294-953b-607acd33d6ef", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.27.tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dcf82819-653a-5175-b212-5cd68de85f65", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.27.tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:38ba2ce1-a50b-5368-a9c1-ce859efc18c6", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 5.3.27.tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:80915c43-0e65-5bff-81bf-a0582079d0a4", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.27.tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4921dfd0-7cd2-5d99-90ed-b8be5af80129", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.27.tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cdb2c7ef-bea0-5f3b-802b-4093c59dd2d5", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.27.tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6b990fa6-66e7-5e80-9f68-cd1a90acb85c", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.27.tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:60f3913f-0edc-5535-91f8-9781c9f34444", "id": "CVE-2025-41234", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41234 is a false positive for org.springframework:spring-context-support 5.3.27.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3019fb6c-3010-5c3d-bbb0-c29717fd2430", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 5.3.27.tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:39194fa5-2bbd-5da5-8dbd-976c2250963b", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 5.3.27.tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1e64eb42-cc3f-5d05-9fe7-c4da4f098e83", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 5.3.27.tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:61aa4797-57be-5362-9339-b37ddc2d3f23", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.27.tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c74ae239-5199-575e-97d0-29ed221dc8f6", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.27.tuxcare.1 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27.tuxcare.1" } ] }