{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a552a0a9-f070-5315-b076-a50a67e97f8c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-beans", "version": "6.0.23-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9d44dee9-677e-55a5-8f54-b0f74f148881", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 6.0.23-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:057d3dce-7a19-59e3-ad66-0486e2aa4d39", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a9d97a19-f726-55d7-b587-1b821f90f94d", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:46109617-6197-5d0b-b7c6-239243f8ed18", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:617ad9bf-aa68-54c9-8340-6e1e37de224a", "id": "CVE-2025-41234", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:23014502-267b-5a5a-bb0b-dcfe4f05fc2c", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 6.0.23-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5533471e-b9eb-53bb-8453-927fc5bbcbcc", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 6.0.23-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:38f0bcbd-957b-5a67-9d54-125840e15125", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 6.0.23-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e852f86b-d8a5-514f-b760-235236de80d7", "id": "CVE-2026-22735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22735 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cd15f113-8b77-5a69-be0c-e347637f3b4d", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 6.0.23-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9977324b-e251-5f50-9e7e-a0c2f1cf53d2", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5e5e619c-0062-5450-bbe9-aaadc057f2bd", "id": "CVE-2026-22741", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22741 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8deec6d7-2150-5c1e-9cd5-7ca7b4ac2f49", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 6.0.23-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-beans@6.0.23-tuxcare.3" } ] }