{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0b0f1f09-87f0-54b0-900f-17cad017e40e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-webmvc", "version": "3.0.5.RELEASE-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:05e5ba70-db2f-519a-928f-200073d21c90", "id": "CVE-2011-2730", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2730 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2d1fd295-2fb8-504b-81aa-c2f03ac66714", "id": "CVE-2011-2894", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2011-2894 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:207c08a3-26a7-5835-a52d-4d68cbff4eaa", "id": "CVE-2013-4152", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4152 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:144a5bb9-1271-5ca4-b074-c939d73a6c97", "id": "CVE-2013-6429", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6429 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0ff81214-1aad-5e30-b68f-217cc6d2c9f7", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:81b5b4bc-6723-5b48-8193-541a887c7414", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8f5a7354-a9a1-52ec-95f6-bd9cd5caad39", "id": "CVE-2014-0054", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0054 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:03cda87d-d76b-593b-b80f-ea172a633cc3", "id": "CVE-2014-0225", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0225 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fdce0d97-c39d-5477-8af1-eca866d90cc5", "id": "CVE-2014-1904", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-1904 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:266dd81c-635a-5a80-89e9-dcf46450610d", "id": "CVE-2014-3578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-3578 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6238c694-8457-5b1a-ab63-902d5b5c99cd", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9bf4bbfa-27bd-5ab9-b7d1-387dc1373d58", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:59c2da28-bd4a-55b0-8539-a945a7a694fe", "id": "CVE-2015-5211", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5211 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f22b12b0-32fa-53ba-bff4-3bc07d5ff5d0", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cc5da186-754f-5ce3-b17c-0f8e96667713", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b343a787-2dfa-58ea-bd94-6aea0778a96d", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c5aeb128-4cb9-52e0-829e-6ce7f6d1eec0", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6c1e45d8-6a5f-574f-b880-2fa6d6fb6732", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e81fbc80-936a-5f77-a89a-60ce6db55c97", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0d2216ab-6db8-54d5-aee1-bf2e20c4a7f6", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a9e1e2c8-3cd9-51c6-b447-22118156b145", "id": "CVE-2018-1271", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1271 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4592485a-ab66-57a7-a9e7-ccabb59b6bd0", "id": "CVE-2018-1272", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1272 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0cbe875e-d5ce-5be2-b68b-084285197655", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dddc8522-6e52-537b-9414-e49ddd79cc1e", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cc20376c-13e5-55cd-bd80-dfcfb8344524", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0d990b40-af29-51fa-8581-9a3cc19dd324", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2f182c43-bddc-5043-b2b0-fab2ab02e614", "id": "CVE-2022-22965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22965 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:27d03264-af6d-5335-aaf2-1a552d64d8fd", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f7869835-ed9e-505d-a7c5-a90dc10c1b60", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2cdd30e9-df27-5064-ab0c-961e2cd83b40", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2ee51e26-9d3d-51fc-993e-1aaf6d3fd330", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eaa42dfd-b87b-5ca1-836b-e6bece9aa383", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a5b2693d-96b0-53d6-8c50-19f5112b6196", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c3c80f5d-66c3-5c35-929c-b591039c43cc", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2303f71d-579b-5a68-8cb5-4f6d2ff55170", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e5de6cb2-b064-5a14-b494-4c20af8fed8b", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:db09d78b-3968-5fb2-9bed-ff77a1d052dc", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b4bc3bd9-3503-5531-825e-96c5c716c136", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:df2cbc12-e3f5-51c4-9592-bbc0da60f6c9", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8c895b0e-6ef9-5790-ab34-f5684be7fe48", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.2" } ] }