{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:fb63e71f-7ca3-5543-89ad-4abf15220f65", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-webmvc-portlet", "version": "3.0.5.RELEASE-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8c6daf6f-55e5-5291-bcd9-c110c3686b95", "id": "CVE-2011-2730", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2730 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1043df59-c873-50c8-b465-2508d637fe04", "id": "CVE-2011-2894", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2011-2894 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:59a69308-7314-595b-b6ce-0c3faea9a17f", "id": "CVE-2013-4152", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4152 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fcb3098f-6cad-5aab-9f6f-4aa8db7bde86", "id": "CVE-2013-6429", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6429 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f586b20e-47a1-548f-a171-8218a3cdcede", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5ec2ad54-1174-5210-8b37-b9d8bae8bfaf", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9c17a8ea-b299-5715-992f-d0ca23e25b1c", "id": "CVE-2014-0054", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0054 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e9bc2513-0a32-55c9-a749-548b3418c173", "id": "CVE-2014-0225", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0225 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1007d64a-38ec-5175-b607-55bca71a4ac3", "id": "CVE-2014-1904", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-1904 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1549e59d-b6a2-5cb0-85a0-a4c5686f2c2c", "id": "CVE-2014-3578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-3578 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6e44a8c6-6508-53da-ac45-867ccaef299d", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:efafa068-898e-524d-93d5-b30a1bf53604", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9a1bff6e-b0d6-5445-a34e-8a15390fe4a0", "id": "CVE-2015-5211", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5211 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:478e44ca-095e-59bf-927b-328ea5804dfc", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:edcd925e-e923-5ff9-8bba-5c8bbeabbf04", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1e37b7d4-02f3-545e-9740-8d05646066fe", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ac4020a5-5bf9-541b-9770-b38798bd40de", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a7fff01b-2d3b-583c-b0bf-e25960dbf0ec", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9525897d-505d-533c-8314-622ff6994b6e", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:93a8a508-91bf-5f59-adb8-48604beb276c", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:57251f13-58fc-5b06-ad3a-cdf9b3a2e22b", "id": "CVE-2018-1271", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1271 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a9d833fd-f4de-52d2-a871-46f1463b2cdd", "id": "CVE-2018-1272", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1272 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:56ac471e-6291-5d99-addc-0e4111fe3c9c", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5e91fc5d-7bb9-55a9-99b8-9fa9c7c6cc6a", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:438478c4-6b37-5eae-b928-cd3cbf46ecdc", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e3c805ef-73f1-5dc9-a2fa-6ce723235c3d", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c87c91c8-4463-5004-9331-328228170200", "id": "CVE-2022-22965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22965 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cff2e8e9-9ba7-5a81-b56b-3b9dbd42e962", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ee05d430-c658-50c8-a377-50219a17990d", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d8661a10-703b-5d47-93f5-174fb68bf3bf", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2e201b19-5422-5434-8aef-2bb6e4975725", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:94d7a641-17b0-5487-9ef9-7a59ebc731dd", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:267fd57c-5d3d-5d91-831b-579216a8c1a3", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0740449f-56e1-5d79-a016-c68dafd4faf0", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:32a78c64-20e1-5c38-90c1-a0f76648fa70", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4494af06-93d7-5cba-9315-9d88704ac6f8", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6e8461a2-7f3c-5f52-9c2a-18140c789085", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:599b6c14-266f-596a-8e2b-3471003a262e", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7983f4ed-2ac9-5643-aeb2-87fc7a7d865a", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:62f239cf-6e2e-5dae-99f3-aca9142ef641", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.2" } ] }