{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:545040ec-533b-595f-8e64-978ffd5560f5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-context-support", "version": "5.3.7-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:86edba48-ef62-5434-b618-0f9581bf8d40", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7df78c40-e68e-59ec-b3ed-a664b1ee9af9", "id": "CVE-2021-22060", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22060 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:84eaa37e-32e7-5ed6-971c-c5d93fb5ba78", "id": "CVE-2021-22096", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22096 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8c822819-44ab-5b83-8ff4-111e051672c4", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5eed1285-af72-5eed-83b1-59f2137e8252", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:310a3bde-da51-59fd-8071-db754afcdd89", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:55f4fb1b-532f-57bf-bfab-7f2bd7d7bccb", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4ed5d30c-afd2-554d-8ea0-125d2c400ad2", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:03a76cf8-e259-5abb-ab24-6e9d22f81168", "id": "CVE-2023-20860", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20860 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6fe07ea4-d7ea-57a2-a916-b982b3241fdf", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9353d35d-4bc5-5bf8-b196-0dbf70b2bbed", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b6e934a7-c641-585e-9347-6e8fe167f36c", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5dd9ad0b-5731-5626-bdca-8459e0371c01", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3df97764-19db-5f94-aed0-b8fb2bd6e12d", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b641f32b-a1ee-5619-a932-6959f0b8739e", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9649dec2-75b7-50f0-98c4-e74b58ddd073", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4c0aae87-1eba-568b-bbf2-16af6ddc71c7", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4a327783-b4ed-5f67-aa63-3451b6a5f19b", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:79265646-6ea8-5bf1-ad86-6a5d846a7f86", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bc88bc2a-e218-58b5-a583-dc8ff7323da3", "id": "CVE-2024-38828", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38828 affects version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:db092383-d2e0-53c1-8760-2306bbcd888f", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a2b51bcb-5d48-5e5c-951b-9953521afafc", "id": "CVE-2025-41234", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41234 is a false positive for org.springframework:spring-context-support 5.3.7-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8d34dafc-29f4-5c1e-b8b4-80bf138c09e9", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:da5d4d83-9ee7-59a8-a1f1-b8e4109701e9", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d43f3294-7994-518b-bc0b-1251cd48bd44", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1ad2405c-2b1e-5a1b-9f2d-7366a409f441", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4796ce54-a5a4-59a5-812a-7f2b955757cf", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.7-tuxcare.2 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.7-tuxcare.2" } ] }