{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b35a9ee4-c7a0-561c-a316-976afa1814d9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-webflux@5.3.31-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-webflux", "version": "5.3.31-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-webflux@5.3.31-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:bb559d24-2707-5bb4-9fe4-7cb043c3fb69", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.31-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:68dd21c8-5989-5cd6-b7f1-29a19a75d285", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0274bb12-b2df-5b13-b279-63b0840251b8", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:06c8ef47-22c8-548d-b9aa-59ae06f538d6", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:263c9dfc-1bd8-54e1-8dc6-8791bb816262", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e92f5cef-dd3d-56dd-bd05-7221a6aba735", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fc86f59e-61b2-521c-88bb-bb9e09353024", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1166a751-dac3-5084-8a06-7ca482c3cfb6", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d273aeaf-89f1-58c1-92d8-fc6d95c5eefa", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ca9c1ec1-98d2-592e-8319-ad545343d6bc", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ba3449e8-91d6-51dd-896a-83a3bd4383cd", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8c2f0d37-9e87-5ac6-8c75-4d770328b6fe", "id": "CVE-2025-41234", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41234 is a false positive for org.springframework:spring-webflux 5.3.31-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:03ee2271-9f6d-5ff5-ae9d-f21f71cc21f5", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b77509c9-c5f2-5729-ad0c-954b797c7a18", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e8ebb5de-4d1c-5fd4-8557-b30f23775f66", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:731c69dd-7258-59fe-b2aa-a572be3daf25", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.31-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:38c84af0-ed96-5d8f-971b-23ce28b3bc3f", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.31-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:89389a4e-ec22-5f67-85e1-e5745373fd40", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d991f0f8-9b57-50f9-b429-b76ccbbdfa40", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.31-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d93a6562-ab9f-5dc9-93a7-0e069acca9e8", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.31-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.31-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.31-tuxcare.3" } ] }