{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a6549700-26f5-5aac-b58a-4ff98aea6941", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-test", "version": "5.2.0.RELEASE-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f7823983-27f4-5379-a913-3e225b7e5089", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8492870a-88d4-53a8-a1b1-47361790f1bc", "id": "CVE-2020-5397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5397 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1a9396ea-be31-5e3f-8986-ff88d44735e2", "id": "CVE-2020-5398", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5398 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6b4e5317-911e-5a34-a565-27f5af9699e3", "id": "CVE-2020-5421", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5421 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:431efa6b-3d4c-56dd-866f-5b619aca9484", "id": "CVE-2021-22060", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22060 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bd1d14ae-67cd-5977-9080-fabf203f4dc7", "id": "CVE-2021-22096", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22096 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:79512568-1ae0-53e0-8074-4ec43c17265d", "id": "CVE-2021-22118", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22118 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4043b2d4-3333-59b5-97a4-5cdff0e77d10", "id": "CVE-2022-22950", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22950 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3dec3899-72ae-5283-86c0-aae1f7ae66ed", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ff6328b7-f0f8-5d02-9c97-bf5b7b6a3fcd", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bba50cb7-ca87-5dfb-9f06-d721dcfd364a", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d4bc9be9-ead4-5900-8081-1fd2b1fd5160", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cf297a47-89da-55d2-a6b7-b127e0835872", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f8302076-ce64-557f-b56e-141204aa24d6", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:49a1c29b-35be-55b0-a7f8-8dcf253e18b2", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b2a91808-064c-50e3-87be-1c5cb6009917", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:af2ca63f-8174-5b2e-9c78-675ef4752336", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:569e964f-ad29-575b-b268-590c4a748647", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7f9eaa1c-f8de-58dd-9bc1-e16a5a5ba709", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-test 5.2.0.RELEASE-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6fce0fe7-c0a4-53c5-944d-28e44bfa3000", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:de8c26ad-6b4c-5e63-862c-caac68217fe0", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:112636b4-0af1-5ed0-9a9d-75b4c30bc83a", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:397a1527-c0ea-5c15-b539-e5648ab9c03e", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:942b0fa0-7c04-5c80-bc3d-df635b421669", "id": "CVE-2025-41249", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41249 is a false positive for org.springframework:spring-test 5.2.0.RELEASE-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:94ab7207-dad9-51ea-b59b-e48e65cab148", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.2" } ] }