{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9d4e9470-3f68-5596-9727-90e1fec354c4", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-context", "version": "4.0.0.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c2d905c6-22db-5538-889c-9c72b276937a", "id": "CVE-2014-0054", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0054 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f33951ca-d531-5e7d-b81f-bcf4ae9bbd1c", "id": "CVE-2014-0225", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0225 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4fcb1e9a-8b9b-5b61-b846-b0391ba1c4ec", "id": "CVE-2014-1904", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-1904 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:495fd6ee-e7ed-5e18-8ca5-9ddbc99091e8", "id": "CVE-2014-3578", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3578 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b978aec-60aa-5b47-a100-3f821e54ea86", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:36fbec3e-d117-59a6-ac7f-ce49ea323fff", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:51b54789-a9d0-5d47-9087-0502d51378a2", "id": "CVE-2015-5211", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-5211 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dc9e29ef-cd4d-5d92-b5a9-45f4a79c27c1", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aa27c5e8-83bf-5ef4-98ef-246c3e9614c1", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b2a22a63-1f80-5b62-a798-f35c6b2994ab", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6499e8e8-f3f2-5f8f-8169-86442abc4fc6", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e264d182-6dd1-5056-9388-fc337647a7a8", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1fa851a3-45ac-5a39-bbd7-11ddd48f8cff", "id": "CVE-2018-1257", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1257 is a false positive for org.springframework:spring-context 4.0.0.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4423a9f3-b890-54d3-bd24-907de3fff294", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b8f8a3b9-695a-5587-8c73-e233987cbf84", "id": "CVE-2018-1271", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1271 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a0a6a1d4-e5d0-5344-9e7f-26bc4e18950f", "id": "CVE-2018-1272", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1272 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dfa38c50-16f6-5413-a379-ae92fc38a494", "id": "CVE-2018-1275", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1275 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d252eacd-a743-5ca7-b22f-b73c0b3475b0", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c2a46e81-42ed-5ff8-a828-24257ceb7140", "id": "CVE-2021-22060", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22060 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:25ff5d14-426c-54e0-a4cd-b0eeca1a4235", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a021bbb8-dbfe-5b2d-9646-b32151e2a457", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bdc7ef29-090e-56fd-a715-67ddd10de2bf", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d622e7c9-cea0-5624-8125-9545dcaed436", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1286518d-b00b-5a73-937c-39a05b077a90", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3664a767-3b20-531d-ba80-35b6e9406f46", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:89c02295-e777-5678-988d-8205d075a3c8", "id": "CVE-2022-22971", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22971 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e77dafc7-df5f-56f8-9b43-c47b885a97be", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d095d75d-67d5-5127-a13c-1df353bf5cdf", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e463b85a-1fb9-5ef1-a828-54936f19921d", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d58c011f-3d7c-5c3b-b910-693c09b43903", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4cbd3a0d-638f-57c9-a259-837d9a7c7062", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b044523f-4d27-5717-ab60-b10e897ebe8f", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4032688f-4d30-51cf-8c9e-8891c2ee3446", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7640e72e-82e7-567b-9000-1daa00dd3a89", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:71bc225d-a0d0-56fd-84d9-850732310485", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f54c55b3-064c-58c9-b07d-47e4f95aaa43", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3a66899b-5d4c-501f-89e2-8dc06c52e839", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:69bd4f1a-cf90-5fc3-b72a-d6df319f21ab", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eaa266af-2b27-5412-8c64-42b30948d2b8", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:13cafb3a-bfa4-52b7-ade7-2070547244fa", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-context@4.0.0.RELEASE-tuxcare.1" } ] }