{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:76a95628-5235-5b35-8ab1-bf8adef70e23", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-context", "version": "3.1.1.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:dfa97eaf-5fcf-54b3-8705-c67ff1670670", "id": "CVE-2013-4152", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-4152 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9658c834-def1-544c-98b2-db79b966115c", "id": "CVE-2013-6429", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6429 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9d8cf9a9-cee6-5b8c-8589-bed96b8f8d95", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bc9d10cd-d839-58df-8d4d-002354216d4f", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d238f1c-7a7d-5ea3-b156-fd02857235b3", "id": "CVE-2014-0054", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0054 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4d7daa64-87fa-5ea8-a945-2be07c2dd32e", "id": "CVE-2014-0225", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0225 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a0e602a2-7450-5266-88df-c0c3b78404dd", "id": "CVE-2014-1904", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-1904 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af6d268a-f97b-5982-97b0-40d58dc966e4", "id": "CVE-2014-3578", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3578 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b058d2de-1229-5bd0-9112-a2679906c37d", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:88f4625c-ddf2-5697-99c1-146626e897d0", "id": "CVE-2015-3192", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-3192 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:85c3229d-8563-5ae3-8ff6-b1114a545391", "id": "CVE-2015-5211", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-5211 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bd7b5a5e-35d0-5780-b494-ecb19a309aa1", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cc9ddd39-0eaf-5bba-a4f4-dbd7c1838c05", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd0126e5-d64c-5e32-868d-4d5ee71e0621", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:88dda444-7392-51a9-b256-f45cd0429ea3", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9134489f-0e94-5929-af5b-ff1e2bc873d0", "id": "CVE-2018-11040", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-11040 is a false positive for org.springframework:spring-context 3.1.1.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8c571e93-d920-529b-9038-abf0f24861c3", "id": "CVE-2018-1257", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1257 is a false positive for org.springframework:spring-context 3.1.1.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7132e3fc-d5fe-50c2-9ad6-47abf8f7fd63", "id": "CVE-2018-1270", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1270 is a false positive for org.springframework:spring-context 3.1.1.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bd4520c5-84dc-5f4e-8e85-3c304b59ebbb", "id": "CVE-2018-1271", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1271 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0130521d-56ab-55f7-ab93-4658625ec0f3", "id": "CVE-2018-1272", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1272 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b90e9152-0928-5c42-ba84-456514757c55", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c0ab86f1-bff4-54eb-8988-cb2477e8a0df", "id": "CVE-2021-22060", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22060 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4cafea6c-4bbc-5969-8917-2843c8df9690", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cbc0ea84-5837-51af-bdbb-7bb0d5ee9ad7", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a28110d7-264c-5b0b-92b0-fba993040378", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8133dbc8-ec3f-5597-9699-936cb28483ed", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:be718058-4e4d-53c2-9e3b-55d5af5d3bd5", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db4e4e28-a5a3-550c-86a2-d2240fa944a0", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e292952-125f-5374-baf9-ee2870de4e7a", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:868303ea-c98d-5a9c-8227-563140a06710", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8e650670-c1f6-5ee4-94f4-84f93f0ba18e", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef87e96c-925a-56a5-a9f1-b6d39d2ca452", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:88dead32-25a9-521f-a221-33772cc023b5", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fd4342fc-e342-588f-97fb-849c1899f0ac", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:769f6ffa-2d70-55c8-9d22-6f5cf9fa43ed", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f070d311-80de-521b-a537-80c068eea570", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:84880398-7126-594f-855f-8b8f4083b12c", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8cdd2084-88e3-5073-bf2d-55ee5076de18", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d1b50e40-dd77-561a-a562-89b26a46fe93", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d3e99609-a146-5d01-bce2-bc912cb1f6b0", "id": "CVE-2025-41242", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41242 is a false positive for org.springframework:spring-context 3.1.1.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8b747a25-0e9c-54ac-9d95-dade3b9cd9f6", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b1ee7cc5-0b51-5f93-bf88-5e70793c4c8e", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-context@3.1.1.RELEASE-tuxcare.1" } ] }