{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ea6747b3-1c5c-5919-b36d-3284d2f58ff9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-context", "version": "5.1.5.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:42f6c288-6ef6-5913-9945-65bb23d1359e", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.1.5.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b9156178-edbb-5bd4-8e8b-72361c66ef23", "id": "CVE-2020-5398", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5398 affects version 5.1.5.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8c2f8ce9-2ef8-5fe1-a9b4-ae106ce4da2d", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 5.1.5.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bdede1b3-242a-53cc-b430-8774e24a0d6b", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 5.1.5.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e8459b75-10c6-5eda-8810-bbb3546c2092", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 5.1.5.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d22a84bf-e887-5b41-bc56-c4f1967fa1e6", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 5.1.5.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e35d78da-6239-5d40-93b9-f7a39acc465e", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.1.5.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5ed87b05-8671-561d-be5b-6b2a4f5dcbd0", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 5.1.5.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dc5d755f-d676-55b2-a3f7-c5e17b4bb1ed", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 5.1.5.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:25f4728b-3993-53a3-a489-732b197b7054", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.1.5.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e031e2c9-40bc-5aae-866c-6c86cde64bd2", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.1.5.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4e597157-e346-58e5-9c47-bd3a90f2da97", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 5.1.5.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0a00c02f-1b7d-55f0-86cd-d733269cf072", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.1.5.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0f2d5eab-317c-5846-ac25-8b708772967a", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.1.5.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fc9cef9b-b884-5844-94fe-d8726cb79ff7", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.1.5.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ee14890c-d58a-5409-b419-5b5514f56aae", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.1.5.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1aed02ab-629a-5838-8a89-eec07ed02ed0", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-context 5.1.5.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d094cf9c-9319-5ff9-80c4-6b7804f9edd6", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.1.5.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:054ca181-4291-5685-8012-dd2e8d3c501d", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 5.1.5.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f78ce1b3-bf41-5d17-93ac-2b0742b2881f", "id": "CVE-2024-38828", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38828 affects version 5.1.5.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7563f6c8-2fa0-5abf-9cc1-a03ac39a5d07", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.1.5.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:21276fb4-90a0-5a37-8de2-abe10b40fd8c", "id": "CVE-2025-41234", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41234 affects version 5.1.5.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e34f4bf5-b506-52f2-89e8-98f2aa52ae37", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.1.5.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:85e06267-2ec2-5cba-be6d-fbd562366dc5", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 5.1.5.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f0219bb9-d049-5f6e-9b4f-6ffae19ac60b", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.1.5.RELEASE-tuxcare.1 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-context@5.1.5.RELEASE-tuxcare.1" } ] }