{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:44c75dfd-f6a7-5e00-b34d-a904240fbdad", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-test", "version": "5.2.0.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9bdb1f97-a6a2-548d-97e8-ecf37b12880c", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8a5c5a6a-97ef-5137-ab08-934f0ac59280", "id": "CVE-2020-5397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5397 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8e83ef9a-2db0-5a34-af88-7f3cc6a672a7", "id": "CVE-2020-5398", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5398 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bc90f591-ac80-5ff3-8eea-645ab1e960f8", "id": "CVE-2020-5421", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5421 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5195de34-80e5-5cc1-8e97-0995d1c6db48", "id": "CVE-2021-22060", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22060 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:99c9adcb-7373-5a95-a6d1-a5bb161e4359", "id": "CVE-2021-22096", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22096 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ba522e31-c735-58a1-a43a-c3192d074336", "id": "CVE-2021-22118", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22118 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d400b96c-ce11-598c-87a7-2bc66d18120a", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b3b451fe-13c6-55e4-98ff-a20aa397eb1f", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4f92dfb7-141f-5d42-ae07-7d1925bc6ae0", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0f761b9e-6d70-52cd-97b9-96bb014e6e17", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e715520c-1f21-5b5b-a3c2-c3749204db1c", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:73c798dd-5d70-5c14-ba02-9def2223d682", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c7caaf11-d6a1-5f4b-9510-e2342996a007", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e95e73c4-7ce6-5db9-b0ad-c12ca5d8fd2d", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ee94e6b8-6c54-56fb-9e45-1efa971a590f", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:69028436-6631-503f-a0c5-d1b2b13943d1", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0ca65c98-cd3c-5341-88b3-756d5cee9555", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b92237a2-dbb1-5506-91be-036a3374ea1a", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-test 5.2.0.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b736bc12-0f77-5c9e-bc4a-2a7712179c3f", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5ea28f7d-03a4-57a2-b5da-c1d5715119d8", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:32e0b4f7-738d-5ea7-bbf0-388acafd31d5", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:78353e67-5f63-55f2-b983-dd5a41af8475", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7d4f47e8-46a7-5a5c-bd10-549ae2055e41", "id": "CVE-2025-41249", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41249 is a false positive for org.springframework:spring-test 5.2.0.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:56ee1c8b-e7dc-5f4b-b651-4d006fcd93c7", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-test." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-test@5.2.0.RELEASE-tuxcare.3" } ] }