{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9c8dcbfa-d5de-560d-9a4c-e9f540e54763", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-webmvc-portlet", "version": "4.3.30.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6faaf3cb-68b2-5d82-a0e2-b8ea5359aa50", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:84c2c9b4-40ba-540e-9b30-229fbeb6bff8", "id": "CVE-2020-5397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5397 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:562908f1-651e-5f49-a205-d397539a068f", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a498c3e5-3d08-5dcf-b1b7-c645e656e20a", "id": "CVE-2021-22060", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22060 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a1b35fa6-82ea-55e8-99c8-43e8bdebaa3a", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:56aaa5e9-db7f-5818-89ec-c7d7177db322", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:35b38770-058a-5ab2-89c5-18566130042c", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2164e3ec-6b10-5050-9a05-57392918cae1", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:54adec52-fe0b-5662-af37-2e3862b3914e", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:857f2532-f045-5c69-adc1-29aafd88b546", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e28c8239-c45d-5cff-a7d8-aae7a3e594ad", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:84dbd167-2445-5e21-911a-bab40505f1f0", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d2db53fc-be73-5924-8eda-fa1de8d24d82", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:651ca5de-b691-589e-8e8f-296c01402a4c", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8b1bbdc3-291f-5b19-9816-eda0e0e60a08", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:90652fbd-47fa-5c0e-8d92-a27b992bdea9", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aab0910c-33c3-5b25-9676-f6e0571abb2f", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ca970565-ba76-5183-9504-0afab19f2558", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f6d1b7bd-ccca-5d95-897a-599832dd8377", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2b0074f4-70c4-5ea9-a81e-1b986c255c15", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e2302d06-9220-51ae-b939-c21a5894df7d", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d67284dc-73b0-5c3d-a043-56cf9595950d", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:691771b0-e9cd-5096-bd72-0ab43cf79136", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f1e8b6f2-f7ec-5884-a43c-91b1a6b303a8", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5e70d22e-9f95-5692-b16e-ddb07fe13328", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@4.3.30.RELEASE-tuxcare.1" } ] }