{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0aa9de10-fe43-5fc0-988e-e4e4d49d0342", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-webmvc-portlet", "version": "3.1.1.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c6361cde-40b4-59f6-a5f2-0644e97d3652", "id": "CVE-2013-4152", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-4152 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1186fd6c-de4c-551e-bdd9-b2c4df0a7c03", "id": "CVE-2013-6429", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6429 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:81cd4d66-b713-5afc-ab1e-1b5125a4a1bd", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1fd3a63d-54e5-5f57-a3b8-6bf1e92ce0bf", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:85d1edd9-a177-50bc-99f2-1c0dd55b44b6", "id": "CVE-2014-0054", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0054 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7405d22f-3ec6-5547-8478-a6a6219127cc", "id": "CVE-2014-0225", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0225 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f1c0d11e-1afe-52b4-abfe-e007a66e1afc", "id": "CVE-2014-1904", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-1904 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:451ccc7f-9323-5888-b55a-cb982554f34d", "id": "CVE-2014-3578", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3578 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:215969be-b1cb-50cb-bbbb-199a5aea0559", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5b03b134-c53d-5888-9e88-b5674ed41f62", "id": "CVE-2015-3192", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-3192 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0084f717-24e5-5ee6-bd80-22f6c02af847", "id": "CVE-2015-5211", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-5211 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:abe7ccd8-cd8d-5889-a4ef-ae037b613cc3", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f8c25f36-10dc-52d9-87e2-22ae50660914", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:68cd0fd6-f30b-5d72-84f5-c622202704fc", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af841e0a-eeff-5fea-90ca-4d48f6dd190e", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:13744b91-c062-5362-88f2-495c88157761", "id": "CVE-2018-11040", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-11040 is a false positive for org.springframework:spring-webmvc-portlet 3.1.1.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0798889d-84bf-5c9c-8b8c-8ab640d876d2", "id": "CVE-2018-1257", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1257 is a false positive for org.springframework:spring-webmvc-portlet 3.1.1.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:037ee075-08f0-5286-a678-f6c066229366", "id": "CVE-2018-1270", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1270 is a false positive for org.springframework:spring-webmvc-portlet 3.1.1.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bd676a95-1143-5e6a-8367-9297a05c6492", "id": "CVE-2018-1271", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1271 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0cc26774-1379-5cad-ab7c-1c70b6a6bee6", "id": "CVE-2018-1272", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1272 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:de4bf09f-89bc-598e-ab50-5e2600e656df", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9876c815-0968-5679-9605-4fab4cdae3f6", "id": "CVE-2021-22060", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22060 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bb7b4aa5-2aeb-51af-b966-a2492bb0be9b", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d40ba222-254f-5f85-b0e0-58a47fb64595", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ffc2d6ab-3400-5e4e-b9f7-1d0590b3cb76", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1bdc527a-7613-5873-81e1-239ffd1e8c27", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:471a27d7-e368-5442-ac93-ae77e885e5a8", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef701a5b-3ce0-5490-a83c-ddcf443ecfe2", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:373240f4-d41a-5045-93c3-ce66b2f6d7f1", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:72e2f990-38cb-5c1b-a856-7691adaf00a8", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:64226bbf-57aa-5dc6-acdd-98482414280d", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae4cebe4-7cf7-5ed1-8700-8181910cd69e", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a6bbd2ef-e09a-5c82-a4e7-09034c018dfc", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6ed5482e-e145-533a-8af7-da47edded26b", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d22a8ab3-e948-515b-ade5-8db4a9a60a53", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1a11f191-4d55-51b0-9139-95dcac7e8351", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c3f3d293-5839-5479-bc7c-ba5e3b94bef2", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2abc361f-de2e-5f0c-a9b6-b0180e9712eb", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c31c3434-caa7-5de9-955d-0190da0627f6", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c7421988-4aa7-5b62-83de-3682f57bb1dc", "id": "CVE-2025-41242", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41242 is a false positive for org.springframework:spring-webmvc-portlet 3.1.1.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:59f55392-5027-52ad-84fc-08f866c649d2", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b8eba5b-59b0-5d48-8f80-9e235d9e7536", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.1.1.RELEASE-tuxcare.1" } ] }