{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:94ca3628-e407-5efd-be71-6a79ba255e90", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-web@6.0.16-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-web", "version": "6.0.16-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-web@6.0.16-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:53debbad-a6ef-5894-a762-ff7782536382", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:277b3ce3-9839-56d8-b5c2-35b2d7ec954c", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:de02bfb7-8570-5745-a83f-2222cc46d5b2", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6a6b5a9d-866d-54e2-90ad-7eb847885885", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2c9cb873-001a-5898-aad0-5987951865e3", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cd997d0e-6455-5c18-9984-b3f3f721a514", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6f28c6e1-971c-5594-ac0f-7b133fc1cc8f", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1087367b-7ff3-5cef-b5a7-41ccfa1c1815", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dacc4ea2-39af-5416-8d51-11d40a6082d0", "id": "CVE-2025-41234", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c1840f43-7d25-5ae6-9296-551bfb082d63", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:86d0eb69-36c7-58f2-8fca-c8d3868e1a98", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a6ebd428-18be-5c33-a4ac-073fd671a435", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b58bd5c1-c10d-57ae-862f-dad6b87e005c", "id": "CVE-2026-22735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22735 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6be09388-550d-5d44-b2c4-2f83096fb94a", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 6.0.16-tuxcare.3 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:de16d44c-7f00-5bd5-b20a-72094fc06e15", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:94ac3cdf-a626-5f42-a946-77996e0f0fae", "id": "CVE-2026-22741", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22741 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:66d5192d-819e-5474-8571-5b7aca0426b8", "id": "CVE-2026-22745", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22745 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@6.0.16-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-web@6.0.16-tuxcare.3" } ] }