{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:16856871-552e-5e7a-a3b9-588ee326c9ea", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-struts", "version": "3.0.5.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8e0abada-c95e-50c1-b186-47108acd8b64", "id": "CVE-2011-2730", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2730 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:29b4dd52-c0c5-5d49-9cdf-bad41b702adc", "id": "CVE-2011-2894", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2011-2894 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1d5600ad-8b93-5d69-9e0c-4e5c936a8ed2", "id": "CVE-2013-4152", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-4152 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8b6b87b0-f46e-5cec-b8e4-4cfde94e411c", "id": "CVE-2013-6429", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6429 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:535c9a0a-cca3-5882-a5c2-45141a35cc89", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:69d93ec5-12e3-5b17-a1d6-43c70163a482", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3a17bb96-b2bc-575c-bd2f-d67538752da5", "id": "CVE-2014-0054", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0054 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6181768d-eaef-5ea7-af47-9e15ab74ba9e", "id": "CVE-2014-0225", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0225 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e2b0d469-8e91-59fb-a51b-c0585060cc31", "id": "CVE-2014-1904", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-1904 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4df949d2-7a27-5b23-857a-9e54bd558e4d", "id": "CVE-2014-3578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-3578 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1e633acf-76ae-531b-9e78-8f78006bdf15", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:38ea8e01-5a75-5e12-a0ae-4e3db3f52b70", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3bfb0e1c-5a1f-5d94-8f4e-f9b765842344", "id": "CVE-2015-5211", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5211 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:35bf98b0-052f-5f7a-94b9-965274694afd", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b0bbe623-6bca-5b9e-821c-57dcdaef4785", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:188ba090-0a96-5802-a0aa-3da6f1e5d6bc", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e7249161-9b6d-53d6-9d68-a80bf7d49333", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:81188976-7014-5f59-bd92-2d1d11dde288", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2c6c3b49-9d45-5633-9665-b9cfb3e4bac8", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:85965167-9e97-5c43-8e7d-92eb61a3175c", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:97554f90-087a-5374-9e4c-13d7b329e7cc", "id": "CVE-2018-1271", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1271 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5f2037ff-3035-5ee0-8c85-cd7e7529e994", "id": "CVE-2018-1272", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1272 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aa5595e3-5011-56d7-977b-1377408e42a0", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f661fe2e-232b-515b-aac0-869f1236fe8b", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:084cf4de-19c4-5483-8ff4-e41fef7624a2", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d17148f7-f95e-5f2c-84da-77d8e946062c", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d4a1e42f-76cc-518c-b449-e3d4ece91700", "id": "CVE-2022-22965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22965 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8bc65e9d-443a-5309-896d-cc937a91a7e7", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:32626302-2738-549c-b4a5-1c4e2db622dc", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2a421fb6-fb35-5323-8961-ec22dd3dd486", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:18c889dc-905d-5e47-8ddb-efea30c539c0", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8503220b-b6d7-53b7-8d92-935231417924", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:48b52599-0934-541c-8ce8-969587451fb3", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:003dbffd-8d53-545c-af5b-5bd8b94a39be", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e8e678c7-1c3a-5ffe-b0cf-fd1fd295439b", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c515c53b-8ca2-5d15-b5a4-d6e6cb24914c", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:892962d4-f831-56da-a045-11e034defd2f", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8d26f4c6-664a-5c69-bcbe-53bd51fefa40", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d6f6a3a2-42d1-5ec2-9fd3-4f444746e38b", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1d3000df-36f5-5dac-8715-527d2fc6a042", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.3" } ] }