{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:75924638-ced9-5288-943b-bac3946ede0e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-context@5.3.27-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-context", "version": "5.3.27-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-context@5.3.27-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:38f0cb8a-be12-5648-8468-7ebb3ec31d62", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.27-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f5e0e678-fc0f-502b-801f-1b742eb8fc52", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5e96f3f4-c6de-5abf-933e-bcd96d8dcac3", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e3735cff-c68f-5c18-b5b5-b4ee65554646", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d205f1b4-bea7-535b-aead-2f135135660f", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:089e7bf0-29d2-5d08-92fe-72588f6e7bcc", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e94abe06-ade6-59b5-9185-5e169a314cf4", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:60836f6e-7a1f-5482-ad0c-72344b99e5a2", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:140a56b3-f8b8-50df-a9c1-fd126744984c", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c49e2bb2-b84a-50a3-92e0-25dad1a3ccc0", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bfd97c58-ae79-59c8-b49c-6db851bb783f", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5d6d3275-682c-5fbc-9952-67e70598bff4", "id": "CVE-2025-41234", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41234 is a false positive for org.springframework:spring-context 5.3.27-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:332f90a5-7016-5c1e-9ba6-1f58e27ad854", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:85c72c6b-a0be-5632-b67d-05aea73020a7", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 5.3.27-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7ebb9f67-ec2c-5a54-8fc4-5ddcd56e86d6", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0767c8e4-25d3-5770-9e51-54922b3638a5", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.27-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4c921862-ba60-54e3-ad5b-e2fe5255401b", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.27-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.27-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.27-tuxcare.2" } ] }