{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:68eafcc5-224f-5a3e-b3d4-d22ac9099316", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-framework-bom@6.1.20-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-framework-bom", "version": "6.1.20-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-framework-bom@6.1.20-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:99b6195b-db8f-5879-9bd9-82526fc1ba5d", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 6.1.20-tuxcare.3 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@6.1.20-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:82628e2b-7871-592e-9503-95a3c49ef52d", "id": "CVE-2025-41234", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.1.20-tuxcare.3 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@6.1.20-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9872670d-a089-574b-a683-094c2593401b", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 6.1.20-tuxcare.3 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@6.1.20-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:757eec27-58bb-5e1d-9707-14758c7a4f84", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 6.1.20-tuxcare.3 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@6.1.20-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:582654c3-f72b-55e7-b10d-566474b62c69", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 6.1.20-tuxcare.3 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@6.1.20-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4b86f480-dd0c-5669-a39d-728dd1e7ae21", "id": "CVE-2026-22735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22735 is fixed in version 6.1.20-tuxcare.3 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@6.1.20-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5ed020a9-1fd1-54ca-bf7b-a5788c4e9aaf", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 6.1.20-tuxcare.3 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@6.1.20-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9ed71837-a40e-543f-8fac-142578ff1885", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 6.1.20-tuxcare.3 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@6.1.20-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7a7fd3b3-1e2f-539c-ba84-07f1247558d5", "id": "CVE-2026-22741", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22741 is fixed in version 6.1.20-tuxcare.3 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@6.1.20-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1d8e739d-c16e-5180-a08d-6e1e9377b60b", "id": "CVE-2026-22745", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22745 is fixed in version 6.1.20-tuxcare.3 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@6.1.20-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@6.1.20-tuxcare.3" } ] }