{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:97249b63-e0e4-59ab-af9e-7ce494e90e35", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-parent", "version": "3.1.1.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:778f9267-a861-5f87-a506-bc2d5f8c3d9e", "id": "CVE-2013-4152", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-4152 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0f7dd1f2-4d75-514e-89a0-e0c9f14a78c8", "id": "CVE-2013-6429", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6429 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:83379fea-12ff-56ff-82d1-5aeb703e6890", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:366a1e89-9911-5d10-82d8-60cdc9e62b77", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:63e07557-43ae-5ef5-86df-eeeb129dbe8e", "id": "CVE-2014-0054", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0054 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3c7b79a2-5b65-5105-a2b9-6056d3985f55", "id": "CVE-2014-0225", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0225 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b2cd3ed4-7cb6-533c-b5e3-5354c660e812", "id": "CVE-2014-1904", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-1904 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:27683554-a844-5621-95b6-bed2842fff5e", "id": "CVE-2014-3578", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3578 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:897fbee5-d92f-58e6-8588-8d45ea8fbdd5", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f6cd78d5-6ac2-5a62-9dd5-4a0493a461bf", "id": "CVE-2015-3192", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-3192 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b54ceb47-6511-5a05-b6b2-7d3f397a8355", "id": "CVE-2015-5211", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-5211 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d8685942-b62a-54f2-bec5-23c82ef4a253", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fd627e40-9f5c-5a6b-8dec-22bd5e516d35", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f82fd9be-cb2d-5f7f-8dd3-7f76df3119e0", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a08745f3-e2c2-52e7-af3a-e5863b08f6c7", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6049e235-c902-5d70-8056-630234131036", "id": "CVE-2018-11040", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-11040 is a false positive for org.springframework:spring-parent 3.1.1.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ce040b2e-71ca-5cdd-b8a7-2e8fee30aacb", "id": "CVE-2018-1257", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1257 is a false positive for org.springframework:spring-parent 3.1.1.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:15f75910-79c8-51ca-96d7-97d3f318ceb1", "id": "CVE-2018-1270", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1270 is a false positive for org.springframework:spring-parent 3.1.1.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:837fe2f6-d7c2-587e-995a-9519c1f510f7", "id": "CVE-2018-1271", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1271 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e17b6e8-ef92-59d7-b632-fd52fa553e9d", "id": "CVE-2018-1272", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1272 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b6d1c1f4-2737-5cc4-a4ec-32ceeccba033", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dc152aa1-92cd-509e-a47e-72dba6e01ce8", "id": "CVE-2021-22060", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22060 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e63e65a9-2221-598a-a425-fb21ce789144", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e73e71d2-9602-58ad-80f5-e5a2be3903a0", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7e03e08f-9418-59f6-bd3e-c9558b1ccc98", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3b4edfa9-449a-54d7-84fc-cd98bfcbd86d", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:52c5bbe9-9d33-5682-a282-c86b193f14b0", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:748dd422-0941-5fa8-88c8-fb892c9b3f10", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f6e53b06-cf0c-5855-ae28-c932570f161b", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:259e9bc3-60d4-535e-9afd-e2ac7d284f64", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:94c0239c-f670-5887-b9bf-d9194863625c", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9ca97073-158d-52e4-871b-2532103a45a0", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6aba5f89-cae2-51b1-bf73-71292e24171d", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9cea8d43-b002-5032-87a4-72cc244f538a", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0553ff29-99ac-5b00-83e2-09184e81ba34", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b0170ac-c1de-5b93-b0b0-678dceed2037", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d81d2d0-6714-540a-888c-095f58506660", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1fcc8555-4f74-5ddb-9018-5269a8bb867b", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c10c0f11-f61d-53fc-bec0-4fb85477b739", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eb68cc67-17d6-5fcc-8b9f-8ab357042e70", "id": "CVE-2025-41242", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41242 is a false positive for org.springframework:spring-parent 3.1.1.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cea859dc-66df-5cf3-a3e1-faa623736973", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dc69adea-312f-5f85-ba3b-e431e2ff3da2", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.1.1.RELEASE-tuxcare.1" } ] }