{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:389b6069-80a5-5d26-a6a6-ec55db30f3b7", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-instrument", "version": "3.0.5.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:209be091-26fb-5ed9-a3fc-08c08d1b19a0", "id": "CVE-2011-2730", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2730 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ab86a719-1ff3-573b-8039-462d059a9837", "id": "CVE-2011-2894", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2894 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a8832055-9465-57f9-a363-9c8d6d663529", "id": "CVE-2013-4152", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4152 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eba0d586-cc8e-5232-8600-889683f4f642", "id": "CVE-2013-6429", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6429 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:84ba7e59-d11e-54bb-a95a-017af931f236", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:427b254d-a8f3-52d2-8253-d6fb4de8917a", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1eecfa41-ad53-5fb7-b489-696b52075efc", "id": "CVE-2014-0054", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0054 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3679815e-a1a8-5d5a-9683-9095124513cb", "id": "CVE-2014-0225", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0225 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c5c4111e-a811-5dfa-a29f-061d76de513a", "id": "CVE-2014-1904", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-1904 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b0bab20b-4f88-503e-a881-19477f2a26d2", "id": "CVE-2014-3578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-3578 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5cc1fe8a-2593-54dd-917c-709f8d6f3486", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:37be012f-7dca-56ac-b899-72fdc7218c45", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7ce09586-d8f1-592f-8370-d187bfb75ec9", "id": "CVE-2015-5211", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5211 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d98ce8c7-7cd8-5c8b-8c66-f0aba1aa5976", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9f44b74a-826f-52f4-a26d-4b23d51a6271", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cc942fda-d80f-5914-8943-d99f77a273ad", "id": "CVE-2016-9878", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-9878 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:23800407-a418-5374-a386-1d04a1914d45", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a0bceae1-c1b4-51d6-a969-400d937254b3", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:835e63d5-ef8c-5ac2-9883-6339ad497e9c", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d6c218e-837d-5969-82e4-44e39090c8f5", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:453156d6-742f-5516-bd08-514822deb0d3", "id": "CVE-2018-1271", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1271 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:429a5b34-372c-5828-9fdb-322de67dc75b", "id": "CVE-2018-1272", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1272 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3d91bfdc-59d3-596e-9937-6ae32160e65e", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:00e53040-b7f7-5e65-85e0-e0a518ac82ea", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a7e7dd34-0013-52f0-880a-af372e9c4829", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b92242a4-5253-5cdc-aaaf-1b96e7ca6855", "id": "CVE-2022-22950", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22950 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a28ece9d-dba2-55b2-b420-1feb975dacb5", "id": "CVE-2022-22965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22965 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:41364338-9929-535d-b6e6-6f440f687533", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:78d98b27-8368-52ff-9ebd-81ab41c6f7c0", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d217579d-9085-5e20-8f01-0ec9e47713ca", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d0f4c48-076a-54b2-9aca-1f4a79846146", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4004cca1-4ec4-502f-96e6-65c065f89b93", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d61393e8-7b00-5230-a589-ceaa658371f3", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ccf1b7d0-2c91-5d98-9c89-6d2080bc74ea", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9da23983-9c21-5b90-8272-41bf7fba690d", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:38fc27d2-42f2-58a7-907d-3dbcedb4aaa0", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:03f6ccbd-c968-53f8-8084-c5a2c2b74a5e", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd3aa098-13f7-5b90-b4c3-60c2cb944427", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dc8ac945-4547-57ed-8b7f-1caedcb78c8b", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a19f0797-387d-5e26-96fa-b0a317c49987", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-instrument." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-instrument@3.0.5.RELEASE-tuxcare.1" } ] }