{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:009983c7-2f35-5676-b3b4-221a1fe3e716", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-instrument", "version": "3.0.5.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8d736024-c612-5df4-9a54-965fe8931a83", "id": "CVE-2011-2730", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2730 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e8516ddc-60c0-5a5e-9ee8-2ecf801b0808", "id": "CVE-2011-2894", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2011-2894 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7754edca-8046-53c4-b8f2-2fc1138b2cb2", "id": "CVE-2013-4152", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-4152 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b0267bdc-8210-5189-8609-cd9103491262", "id": "CVE-2013-6429", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6429 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:755d8bf6-d958-5991-9ace-a5510fd3f786", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:448ae1d1-9d22-52e5-99d8-4051646f8515", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:39ad01cc-df58-525a-b0c2-93aa3376868b", "id": "CVE-2014-0054", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0054 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ad38139e-e039-52fb-9a6e-3e8f02122067", "id": "CVE-2014-0225", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0225 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a199d921-4410-5056-9ec5-d1de38056c90", "id": "CVE-2014-1904", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-1904 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:95c722c6-d0be-50b6-8562-1c01b4dc8160", "id": "CVE-2014-3578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-3578 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5e1e7361-f7c0-5482-9302-2a4db2893305", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5d2bb685-8a8e-5cd6-b770-d307c7e6b6a1", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8afd7cdd-a330-521e-8aa0-6b2155f15c2e", "id": "CVE-2015-5211", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5211 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d82b9c1b-e0a5-5d65-bc56-279b8fe8f6ed", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8dd5e681-8bc5-5576-8ccf-2aa1bf60726d", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:11690a1e-eb86-534a-a013-877f48418f38", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0ef47397-c227-5f85-a04a-0649c897fd15", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8e90ffdf-53bd-51d6-b459-9ce33a52504d", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:939e002e-3574-5668-92c3-2c26e451a7a7", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5398689c-da83-5c1c-8698-48c8d14b0ee3", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d80fbd43-d5bf-546d-9b4f-f8064573e2d3", "id": "CVE-2018-1271", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1271 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:19b00779-5d96-5859-8b02-f13ee82a7a28", "id": "CVE-2018-1272", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1272 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e83f2334-74c1-5dac-b595-d1194864c07b", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:baae5f8b-cd6e-564e-8123-337d96fd8c4f", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cd4b0e3c-5564-54ec-9af2-6f61ebf7e65b", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5a8d48ab-2483-5827-b80c-2d8ea33262c1", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:07fd5ce7-140e-5a45-ac3d-a6bbc61764f9", "id": "CVE-2022-22965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22965 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7c4c9288-b57e-5d8e-8b1f-2c82c2e26672", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:01f7b51d-8418-5709-a08f-ea5bde384636", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:216f6e36-25ad-506b-8805-77605107f766", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:032297f2-b737-5d84-a19c-13afde651368", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:875ddd28-c0c8-5c6b-b2da-ec92d56e432c", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e5125436-1c07-574c-abfc-d393f5476e91", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9f4fa942-433b-58a0-a701-143ce9e91cea", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1f131121-186f-57f7-b88e-412f02a70d99", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a10f7b08-6eff-5b8f-bfb6-2bd61fbc2deb", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e12fe448-8bef-5492-b077-58824663b4d4", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:589c979d-d688-5117-9fc4-412eed921559", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:14d00ce8-aac8-5d4e-b7d8-c7faa7bb9b55", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dedf52b9-e46e-5a2c-81f7-fea7a52917f8", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.3" } ] }