{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:46feeca5-fef6-5e69-80cd-ea960fd1d920", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-test", "version": "5.2.0.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:06f003fa-6269-58e7-83da-d7ab713fcac8", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2df2a9aa-5a0e-5482-9219-e2aca163d346", "id": "CVE-2020-5397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5397 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d916f78c-9046-521e-ae83-ab59cfd4e88d", "id": "CVE-2020-5398", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5398 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cd5b3580-2567-563a-84ba-1586ac718c17", "id": "CVE-2020-5421", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5421 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:29104449-3e66-5415-ad07-2ceea2c55b93", "id": "CVE-2021-22060", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22060 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bc345afd-f3cf-5f86-adcf-04c6b38b42ba", "id": "CVE-2021-22096", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22096 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:26c61bd1-b1f9-5491-8bbf-40a3d837a024", "id": "CVE-2021-22118", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22118 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b180f6ff-65a8-51fa-8862-ae1eb49001af", "id": "CVE-2022-22950", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22950 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f7ba1d1d-ff78-55c8-9509-2a4cc0f3d8bb", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2f8baa36-19bd-51ad-850b-d4cd64026046", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:07fe26d6-0300-5b0d-8f35-a42b89fa63fb", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da2882d9-9405-5154-ac3a-ceeb889f785f", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7a4d230e-94d0-58f7-be3d-5a7093d57ff5", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ad1a5f8b-a73b-5d13-9dfd-8b05eae407ad", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:623ef814-d741-5753-bbd5-7080bc8da786", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f881bd9e-04f7-5967-9d3b-f315ba63fc41", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9cf657b5-cb3b-5125-8b8c-128899e2f906", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5b728b13-10f0-5184-92bd-ade8cd1d2da3", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0838d13e-6278-552d-a474-9b720d2a6735", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-test 5.2.0.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cc307f9b-63b3-5c97-858a-f8a0e10d21bd", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:031c12f4-5a2d-591b-9666-384d5ab3cbc3", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c39a442d-95ac-5b67-a548-462b312e9f79", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:907ce6cc-3c57-5da0-a3e4-e649d99c1f6b", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fcd33cab-eca8-5cc9-af68-4d5cbcced48b", "id": "CVE-2025-41249", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41249 is a false positive for org.springframework:spring-test 5.2.0.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:90d279b4-1b3c-5b34-90d7-233f9a23c96e", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.1" } ] }