{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3f6e2b57-8c90-5b56-b616-6fd3038df152", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-context@5.3.31.tuxcare", "type": "library", "group": "org.springframework", "name": "spring-context", "version": "5.3.31.tuxcare", "purl": "pkg:maven/org.springframework/spring-context@5.3.31.tuxcare" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a4367287-cdd3-5ab1-b651-4b034bdc21fa", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.31.tuxcare of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.31.tuxcare" } ] }, { "bom-ref": "urn:uuid:ec949a77-81b7-531c-9f67-7aa4bcf29605", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.31.tuxcare of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.31.tuxcare" } ] }, { "bom-ref": "urn:uuid:ff3ac2d7-5590-5582-a24c-93873ee9cced", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 5.3.31.tuxcare of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.31.tuxcare" } ] }, { "bom-ref": "urn:uuid:73938f0c-5313-5058-9bd0-449c07325801", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.31.tuxcare of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.31.tuxcare" } ] }, { "bom-ref": "urn:uuid:4072baca-9560-53f6-956e-dd3854e5adad", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.3.31.tuxcare of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.31.tuxcare" } ] }, { "bom-ref": "urn:uuid:63bc76ab-93fd-5f7f-a36b-9cc03a1054df", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 5.3.31.tuxcare of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.31.tuxcare" } ] }, { "bom-ref": "urn:uuid:e4b14316-9517-50ff-924c-0d852e68a4bc", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 5.3.31.tuxcare of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.31.tuxcare" } ] }, { "bom-ref": "urn:uuid:2185a17f-19e9-50fb-b3ec-34844b5be2b0", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.31.tuxcare of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.31.tuxcare" } ] }, { "bom-ref": "urn:uuid:e98d883d-ac5c-59f9-af27-4d003a99e13e", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 5.3.31.tuxcare of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.31.tuxcare" } ] }, { "bom-ref": "urn:uuid:15fba66f-2a81-5fa1-b7f1-05702cdb59d4", "id": "CVE-2024-38828", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38828 affects version 5.3.31.tuxcare of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.31.tuxcare" } ] }, { "bom-ref": "urn:uuid:5901d6a9-cce1-5b44-a59e-a0d7d7f544b3", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.3.31.tuxcare of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.31.tuxcare" } ] }, { "bom-ref": "urn:uuid:8b6d0d02-387d-5a5a-bbef-44773682b004", "id": "CVE-2025-41234", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41234 is a false positive for org.springframework:spring-context 5.3.31.tuxcare." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.31.tuxcare" } ] }, { "bom-ref": "urn:uuid:9cfc2e82-e42d-5bae-92aa-659be6111283", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 5.3.31.tuxcare of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.31.tuxcare" } ] }, { "bom-ref": "urn:uuid:e0b88474-13a1-51ad-b456-9bc1d5829e9b", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 5.3.31.tuxcare of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.31.tuxcare" } ] }, { "bom-ref": "urn:uuid:03ecc80c-d876-5422-92a8-1c8f16eda632", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 5.3.31.tuxcare of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.31.tuxcare" } ] }, { "bom-ref": "urn:uuid:b3d9a5f9-6d77-5fc8-9d2d-d4c19874dc38", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.31.tuxcare of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.31.tuxcare" } ] }, { "bom-ref": "urn:uuid:fbe22445-ca83-55c5-8880-52e024f9cd30", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.31.tuxcare of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.31.tuxcare" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-context@5.3.31.tuxcare" } ] }