{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e46ebb38-5d3f-5805-bc38-dca9e936b3a8", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-webmvc", "version": "3.0.5.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f6d018d7-b5e2-5f7f-ba88-eb617a16d1c5", "id": "CVE-2011-2730", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2730 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1522a940-9935-5a45-97c3-672249cb4e8e", "id": "CVE-2011-2894", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2011-2894 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7404df0f-b974-5ded-9c19-4e7db0680b72", "id": "CVE-2013-4152", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-4152 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d55847ad-5393-5e9f-93b2-56f5040d3d84", "id": "CVE-2013-6429", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6429 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ed47541b-12e3-5f28-9c5f-6da150f60ff0", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:eadb54a7-3077-50e3-a02f-be8b391d8e05", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ba838ed3-6fbf-5a32-80b3-faf881617725", "id": "CVE-2014-0054", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0054 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0fba47be-9cde-5cc0-a3ed-8dd57c5a664d", "id": "CVE-2014-0225", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0225 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:323b3581-7872-5cd6-808c-3b14193622a0", "id": "CVE-2014-1904", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-1904 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ac96d79c-bed6-52d6-ac99-edd7c780e5bd", "id": "CVE-2014-3578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-3578 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:25e208ed-1f15-50e4-8842-977fa826ccd3", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f9c59686-d94f-573a-a6b8-87a1d6c59a01", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7b9be7ed-b8f4-525c-a451-9c215d495c84", "id": "CVE-2015-5211", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5211 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1827fce9-0c97-5410-8417-630ef8749992", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4fbbb8ef-05cd-57e5-8457-63b09d59c547", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9eb3f96d-dcfa-52be-af79-e257485d63f0", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cd6cadbb-26df-55bf-92ad-0546854b0796", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:68631977-305d-5750-bb35-c8ecd2977aa6", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aa4ea42d-0b04-55bf-8cfd-0cc88d2f9382", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:63a3adff-745b-5033-9381-63c5e5af8c66", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a9acc7f1-8872-50ed-a480-fc361b35be19", "id": "CVE-2018-1271", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1271 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:37558b7a-343f-5a04-bb0a-1495238916e0", "id": "CVE-2018-1272", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1272 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2b645580-a3cc-5a14-b627-5a25460dcaee", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c44f28b4-abd5-55d9-a329-7ddca9cc7798", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c0623f62-d146-58e1-8f72-185195357619", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5c5b4205-b78d-535d-9b9c-24f1242a3489", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9c05d224-5ead-5213-8776-91da2c0319f7", "id": "CVE-2022-22965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22965 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:58569753-64e4-5149-9ab3-19fbc2263d3c", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1f4fab59-9146-5b80-811a-73f76f3c1be6", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ff5cef6a-dbfd-5732-b82d-b159d1189516", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:16e2bc7b-5799-59b1-b615-00c6f5de07f0", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9936a013-c37a-5964-bdb6-1ecee8f18ebc", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fca15345-ef42-5e87-a3e6-651845fce3c0", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4a3c7ed3-d669-5829-8689-33c1640f8cc7", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:59ba6452-b892-5628-a3d6-ab77c7cd7f89", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d3df6102-e664-5996-988b-9000374a284e", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b7b600d9-5882-55c5-9b9b-6c5f1e3762bf", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8554e7f1-4a87-5fba-8074-bdeefcb2bb58", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b754fb88-7f0c-5555-aa0e-5206d40deb28", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b6c670e7-71d1-5dea-ab7a-f00319c08ac7", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.3" } ] }