{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:712e0e76-fadc-543d-ba36-34649a880267", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-context@6.0.23-tuxcare.4", "type": "library", "group": "org.springframework", "name": "spring-context", "version": "6.0.23-tuxcare.4", "purl": "pkg:maven/org.springframework/spring-context@6.0.23-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:914ac0ff-684e-501d-ad1e-811a16beb800", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 6.0.23-tuxcare.4 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:54af8cf1-7047-5ba7-a26b-8bc970803e03", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:16fc1060-8481-5c0a-b055-fa1f9e224c40", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d5dc37ba-95fe-5bde-82b9-8b2d4c16e81d", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:437208db-f68e-5de8-83e4-95b71fec808b", "id": "CVE-2025-41234", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f9d2c2cf-445a-51a9-a4c0-df3540a8c216", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 6.0.23-tuxcare.4 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a52c5998-498c-5db3-b711-8766c72ad310", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 6.0.23-tuxcare.4 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4edf2efe-14e1-5446-8e3b-7b8f9d0ec4ea", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 6.0.23-tuxcare.4 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:154453d4-69c9-576b-bba7-a816d19ffded", "id": "CVE-2026-22735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22735 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2ce331b1-7b7b-5bb2-a041-a6f550266f96", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 6.0.23-tuxcare.4 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:13ff930e-5a22-5d1b-ae07-bc0f3f3c6a59", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6bf00720-0de2-5f40-a485-f4a166c6709d", "id": "CVE-2026-22741", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22741 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:64ce9e5c-5325-5786-b36d-968fcb878828", "id": "CVE-2026-22745", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22745 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@6.0.23-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-context@6.0.23-tuxcare.4" } ] }