{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:39232ce8-400b-5f5c-a7af-93c08fd9e4d1", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-webflux@5.3.29-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-webflux", "version": "5.3.29-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-webflux@5.3.29-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:45c38cd1-30b3-5387-a1d3-b9703626e5b8", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.29-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2d6edfd1-0619-560b-82c5-46a1ae473316", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.29-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f99ce023-606c-5868-9adb-0fb6463643e5", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.29-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a0464ca5-67df-5166-b7c9-013013d1b2a8", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.3.29-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:89d08684-e18f-5622-8e37-dc0c931a61ad", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.3.29-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4a7c9ca6-3b3a-5e2f-bfa3-9efd3026e3bd", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.29-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ab5c487b-9ee5-5605-87b4-b4caadf2d3e2", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.29-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dc74a61b-178e-52d4-aa6d-7bcbb2bd2667", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.29-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b89ba4a-780d-547e-a5f4-58db167ecb85", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.29-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e0fe03b7-d120-5e1a-8a5c-e91534cfe6b0", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.29-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b6d267a5-8ea8-52cd-b0f9-a40ecbb5b862", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.29-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2496ead8-c6c5-5327-a609-ea42cadf756e", "id": "CVE-2025-41234", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41234 is a false positive for org.springframework:spring-webflux 5.3.29-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2afc218f-18b8-58f0-8074-538666fb832e", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 5.3.29-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3b6f25d9-2a13-5c51-8608-66e6a777a64f", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 5.3.29-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8cc72d13-5f8a-5afc-8e7b-6ff3582bae1d", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 5.3.29-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a1659ba8-7919-590b-b507-d41b0eb5eb4d", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.29-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.29-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b5727d28-2cd1-565b-9697-d235e6256b67", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.29-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.29-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.29-tuxcare.2" } ] }