{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c7dcc09e-6e0e-59d9-a8c2-089e2aa26bee", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-parent", "version": "3.0.5.RELEASE-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:62abb5dd-3532-554c-939c-c5502ce839bf", "id": "CVE-2011-2730", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2730 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e514844c-2721-5667-9ac2-fe89ceee5e2f", "id": "CVE-2011-2894", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2011-2894 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:963d839b-1b50-5f9e-ad19-6a62d95050bf", "id": "CVE-2013-4152", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4152 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b22bb9d4-cbf6-5122-9781-5bf80dbb0d47", "id": "CVE-2013-6429", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6429 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:66fda58b-2161-5a97-993f-eec70f4004fb", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:94a967fc-d5fc-51a8-9114-6b488cbdccf6", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e50c4d73-e2b1-50de-b7ec-0ff541d59278", "id": "CVE-2014-0054", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0054 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b02b67dc-f055-5351-9a24-8cbdc0c6f72b", "id": "CVE-2014-0225", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0225 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ed69271d-830c-5348-a8d5-0dd1f7f83a3c", "id": "CVE-2014-1904", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-1904 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0a015f62-5cd9-5e18-a1c0-435e258b4284", "id": "CVE-2014-3578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-3578 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9156eead-7a45-5ff6-ac97-bffabda3e6d9", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:40a1681d-0d82-5fe7-bf7a-33e9be409b4e", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:167f6f61-0583-58ec-9317-d0b346f6908f", "id": "CVE-2015-5211", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5211 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:190cfab8-40b3-50e2-b738-37627a2c43e4", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a5800c5f-7271-50ca-8fc7-a7e3c7afe6b5", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c07eda53-3ae9-5fad-8dac-39b04e7c492f", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b9ffa2c-0865-5ca9-80fa-2adeb993096f", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b752b567-9865-5d65-af41-d7de312c7aba", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1dde80fb-ea70-5439-807f-80b9ae714711", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6755a307-8e4f-5d51-9fbd-2f5aeff03941", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0da52849-5811-54ed-a6fa-13a8368c87c0", "id": "CVE-2018-1271", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1271 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:461bcd5d-4afe-529e-93f3-ab2cb312e3c9", "id": "CVE-2018-1272", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1272 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c94b235b-dbc1-5b9c-9407-8c65bc679189", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cae091d4-6834-5259-9150-6b089997a590", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ffd3a2b6-9d0a-5ade-a815-b21b716a9194", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6161160c-65b5-5753-9b3a-2a70d2fb3c28", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:42362479-d118-5e4a-83a0-5ebe98bd39e9", "id": "CVE-2022-22965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22965 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7538aa39-2ac5-5a01-9fea-3c33b64860be", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ae641749-329d-554c-ac31-ed6447efb904", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3800c74a-5fb6-5a8c-be54-ce2f2dffab8b", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d02ab30a-413a-55d4-a7c5-36dcb02bb399", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e94b6adb-8f71-5e29-92cc-cb92915d8988", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f1baf754-52d2-5f7d-b29d-8e7fc3eb8c2e", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5616a6ae-2eaf-53f0-b87f-6101adf5a892", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:244d9eb5-b573-5364-9ae4-10a7fcdc84c5", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b716d883-7e17-5049-bbf2-8933aa39e2ae", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:346e4d33-054c-57c0-8888-5fed3676c851", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:69d50451-a06d-5d03-90b4-cf735f1da9e4", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6c9dd3f6-6da1-5014-b9c1-df37260c2dd7", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:392f5bb2-d8da-5492-bf88-7d1bcd917b7e", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.2" } ] }