{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:de8a0b5c-3f66-57e9-96b4-f1360078d791", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-webmvc@6.0.16-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-webmvc", "version": "6.0.16-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-webmvc@6.0.16-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9400e5ce-1476-5e2d-bbdc-e08804f8d94a", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 6.0.16-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@6.0.16-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bf577053-50e6-5a9b-9ee3-748908b687e0", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 6.0.16-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@6.0.16-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:14b71c6c-b50a-5b58-9dd1-dc9fa1702d4b", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 6.0.16-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@6.0.16-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:803a5e91-c503-5a82-94f7-a3367240721f", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 6.0.16-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@6.0.16-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aaeafa7a-47f5-517b-a2f4-0555e1749874", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 6.0.16-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@6.0.16-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:19683116-fd6b-5227-b1fa-6c1770506e45", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 6.0.16-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@6.0.16-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a01f894c-a336-5a5b-9594-92c880260621", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 6.0.16-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@6.0.16-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5326f535-bf87-5f84-bac0-48f1f936c041", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 6.0.16-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@6.0.16-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6326907a-aefd-5044-994f-b76a830485d6", "id": "CVE-2025-41234", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.0.16-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@6.0.16-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7dd1b06d-84cd-5586-834e-94b7dcab2bfd", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 6.0.16-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@6.0.16-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2656563-3352-5de0-b991-00aa4a7e3478", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 6.0.16-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@6.0.16-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bc9c5173-69dc-53df-8987-4ffac2c8c2c0", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 6.0.16-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@6.0.16-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4e25615-9eeb-5f53-94aa-bda4b05f09f7", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 6.0.16-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@6.0.16-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a1f55961-4e21-58e9-bd9f-3c6c824de13c", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 6.0.16-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@6.0.16-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@6.0.16-tuxcare.1" } ] }