{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7d98f8f1-1d1b-5633-b956-b5a22c3ef679", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-parent", "version": "3.0.5.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:414a2b44-818e-5de5-97d6-f6391e9749ad", "id": "CVE-2011-2730", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2730 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e698829b-4150-5589-a8bd-9b6c24219904", "id": "CVE-2011-2894", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2011-2894 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7b266a69-302b-567e-9e0d-351f849f2e8c", "id": "CVE-2013-4152", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-4152 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e128eb0b-496b-5654-b809-94e8c32299d1", "id": "CVE-2013-6429", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6429 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:950bcf1a-b9e4-5a56-91ec-f5bc47868a72", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:df7178cc-ec1c-5d21-9c76-809d2c57a3a3", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:86968992-281d-5fa4-8565-e1b17cf0be9b", "id": "CVE-2014-0054", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0054 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bc0754e4-fc65-5c95-a694-e550ef2e11ae", "id": "CVE-2014-0225", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0225 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:08d7e5cc-f94b-5bea-a45b-557e9a3bde0a", "id": "CVE-2014-1904", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-1904 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a3266630-db04-5506-8487-92c694657b8c", "id": "CVE-2014-3578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-3578 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4d09bb3b-1e15-5a2d-b4ad-59eaa78858ff", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a23ae831-a891-5261-89f4-9bcbe7e67617", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:41da0f5a-d2b8-502c-b157-a53d50083fe1", "id": "CVE-2015-5211", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5211 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:845f9900-3f03-5234-853c-2813d8ff5c0d", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0eb4b29e-1cbb-5186-a589-d8210032224c", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:eaeb20f3-5a90-5591-8f9b-53b89ca7f532", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c3d5b931-acbc-5fc8-ae5f-6dde28837981", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:520b9cdb-e47e-563a-a815-9d2f5a1d2cb9", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:245c1977-1c69-53b7-9544-1dfb7b9f4daf", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:47b3433b-d46c-50b1-9ec1-26138478fe36", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0bac82c5-e33b-574b-a5de-d51efb09e9a0", "id": "CVE-2018-1271", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1271 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b9b5315f-1768-529e-b347-b9b92f4c9448", "id": "CVE-2018-1272", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1272 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:18d5f7c1-d55d-5c89-b2a0-4677602ccffa", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:96983ead-c853-5d98-afdf-acacd69ef758", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1d2a3ab2-8cf0-5dc8-abab-542f30aa7f8d", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5ce7a093-8fb6-5b7d-86c9-f61babd42fe0", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0e6724ad-f1f6-5313-a966-28fbaa7275a5", "id": "CVE-2022-22965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22965 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fca23c9a-9e16-5b92-b684-ef089402e9f9", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cd964cf1-936b-528a-80e2-16619c9f70fd", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9220f328-a74c-5b3d-8ad9-d2fe856773f0", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fecc5d95-6f35-5285-a3cf-265fbf78129e", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cf1e970a-83e6-54dc-b66b-ea9cbc030674", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:769fa364-5ea8-5446-b8d9-a61666ffd6ad", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:21c103d3-82ae-58c4-874d-a817283bfcfc", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6ac3cba3-646a-5af3-a767-3b8729efe991", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c34c95b5-9afd-549a-aded-4769ca8cfbe3", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5cba57cb-c10b-56b1-a4c8-442b614cfffa", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2072c678-7fdd-50b5-a8be-a98ae1160038", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4432df5a-8a15-5e4b-9343-29343e838541", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fc4ffa7f-790f-5fb7-abf9-bd87967ff915", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.3" } ] }