{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:275ef2b2-645b-503d-828e-847eef20615c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-websocket@5.3.30-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-websocket", "version": "5.3.30-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-websocket@5.3.30-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:321cd38b-3581-59dc-944b-a1e1c06ee0c9", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.30-tuxcare.1 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f5c4a68d-2486-509f-999f-5ab73db5d2f9", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d0addf12-e13e-5669-b0ee-48b49344184c", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8095a7d6-936e-59ff-bc34-a8ffbd373a46", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9245e4f4-9b03-57d5-8f99-287e133620fc", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:13606638-10e1-5581-848e-f7887cb20d78", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d3546b1-fb95-5594-8670-c6963db72b55", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:607b7405-9454-5f13-8c60-1f73a3e32f1c", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d7ff16b4-7659-5725-bfdb-92cff6c6dc1c", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1f076694-9f9d-5e3c-b8c8-afabab7ad6be", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:248cfb28-3604-5c9b-821e-f5f61626b481", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cb074ca0-aee6-56f5-8105-216c7277f44f", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:40f3edd6-f261-5c40-b99d-ad5c2810669a", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0194c2db-7e5d-5d4b-a8b4-04639871ee5d", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0f18c1ce-f52a-59f5-a682-48ce9919dd1a", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.30-tuxcare.1 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cc2fc220-0ab5-5a5b-9142-f87716f732cd", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.30-tuxcare.1 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.30-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.30-tuxcare.1" } ] }