{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5e8cc6c2-0d5b-5095-ab88-f25873f11eec", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-asm", "version": "3.0.5.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8912663f-06a6-5901-aa12-a4c0ae6f2264", "id": "CVE-2011-2730", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2730 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cb91d847-d86c-5330-9724-6d6f3d9f763f", "id": "CVE-2011-2894", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2894 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c39d6b1f-d4fc-5418-ab8c-b682a7feef81", "id": "CVE-2013-4152", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4152 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7054bd67-89bf-505b-86df-3433459e69fb", "id": "CVE-2013-6429", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6429 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:76225864-64d9-5f8b-ac0d-a8932cac2489", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d3290734-507a-59f4-b816-352090d3e324", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:76e1f53c-e289-529c-9917-798273b09c6f", "id": "CVE-2014-0054", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0054 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:35a6322d-9e7b-5837-9df8-ea23f460ab9a", "id": "CVE-2014-0225", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0225 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c88bcd72-c896-53c3-8754-faca3978077d", "id": "CVE-2014-1904", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-1904 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4e390d34-ba4c-5e88-b282-a753f1b43b00", "id": "CVE-2014-3578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-3578 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dc3eb83c-261e-5322-8355-93f0c60faff8", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bcac06db-4e03-589e-a928-2a798532ce72", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f5203310-1161-5a06-bcc6-cdc7842d2b97", "id": "CVE-2015-5211", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5211 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ddc6137d-db92-53b6-9fc1-2deb62325448", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f1cf0192-709e-56e0-899b-f1b6bc3ac8c9", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2a5c3d18-5e58-5028-97bb-3b1c3b48d586", "id": "CVE-2016-9878", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-9878 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1da51a19-cb1a-50e8-8759-624570ee6109", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b52cd46-1e8c-5a85-b3b1-bd02b9e197a2", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0f725260-5ebe-547f-a6de-8d3f7fb4c135", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2b774852-2fcb-5d11-b2f0-856fd40f4b70", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:82ae5a4d-f9b2-5934-92c8-b7af72986f14", "id": "CVE-2018-1271", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1271 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:29e1b306-e25e-517a-8a48-51faf156b0e6", "id": "CVE-2018-1272", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1272 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ecdb9fa9-1871-5562-8cd6-7542ea834bc6", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:973998cf-75a0-57e1-bb40-bfaba8876daf", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a1b945d2-9954-591a-a1eb-39a7cd8d3e11", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:17165745-70c6-539d-acee-9535711006df", "id": "CVE-2022-22950", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22950 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9bbcb858-90aa-53d0-af88-8f3bd651f7be", "id": "CVE-2022-22965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22965 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae2450ab-e7a9-5b05-8815-a6504a735db0", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6c3c53e0-ad1a-5240-9791-ea3fe51ad335", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a0d59f43-e9fc-549c-8920-5ef7aef0ef58", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eee5d173-a16b-5b13-b2c1-de8cf982a3ea", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bf123876-f2c9-50cb-9667-875446146d7e", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:83f178d5-7379-52cf-81c2-9c9644b409d7", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3d3c052b-d0d2-59cd-90e6-5c9eb9f92e29", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7797feb9-652e-5c1f-8f6c-2b343069c7da", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b480e4b-6430-50fc-bf18-805a76555d7e", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cd3624d0-dd61-54fa-afea-ff98f49bdc1b", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:10565f54-e6ea-5af4-9d4a-205e741a9bb3", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:43632957-dfd7-5483-b20f-f7e40b6ba004", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:611bc0f0-b93a-5a46-84de-4fb90d06928c", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-asm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-asm@3.0.5.RELEASE-tuxcare.1" } ] }