{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1c211d4f-25bf-504e-9a1f-4d64d9246a19", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-parent", "version": "3.0.5.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a62c2d78-2975-5544-8308-f7074a0c7e90", "id": "CVE-2011-2730", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2730 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cedb6188-d5b3-558c-90e3-62916483f929", "id": "CVE-2011-2894", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2894 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:93154ad9-5b5f-5dce-8475-09e70b71e2ce", "id": "CVE-2013-4152", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4152 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:adb02252-383e-552c-a284-d01d6875fa29", "id": "CVE-2013-6429", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6429 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a6123b80-ff12-597b-976f-9fd6a5146353", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ddbab58e-f2df-5f60-9cd3-b4a2a9be21fe", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a9db5343-7f60-5a39-98f8-1a35bfd1af26", "id": "CVE-2014-0054", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0054 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fea02e3f-0971-52b5-8120-f1b6fbca7a5e", "id": "CVE-2014-0225", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0225 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f76f1fd-02eb-5de2-abf1-73920385ca43", "id": "CVE-2014-1904", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-1904 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d3a10c65-2922-530a-82d2-4a0dd9dca45b", "id": "CVE-2014-3578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-3578 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eed1fc5d-8820-5205-b673-856384fab643", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c4bf1bb4-9ad1-5158-9e93-21ebf14490d2", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:49ad1e33-79af-5ed6-840a-4b1e4430a7d3", "id": "CVE-2015-5211", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5211 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d3b1db1f-5513-5156-afe3-58fb84e8e8a0", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:09b74ac6-ba2a-5fda-9c9a-704bc00d9ff2", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8a83b625-ecac-5a8c-9003-175a38cce263", "id": "CVE-2016-9878", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-9878 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fcabed55-101b-569b-b0f5-d7ac806e93de", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ccb91831-84fc-55c0-85f7-a46307ca0063", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d55dbc4-dd95-5919-9b96-07121d2e2e31", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4aa4dc3c-f9ef-5c4d-84b4-1edb0d93a53f", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:90866aa0-2cab-5ba1-bd70-f4410fec65ee", "id": "CVE-2018-1271", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1271 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1071dc4d-bd8b-57d7-9fe8-af6c6c271c2e", "id": "CVE-2018-1272", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1272 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b5c0b575-abd9-58fc-ad7b-3f28e992861a", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:386fae98-eb02-5237-ad2f-417515c0df13", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:14eb4784-2681-57fd-825d-b263fc921133", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:edb1f552-3740-57fd-a845-c1bb2d1614bd", "id": "CVE-2022-22950", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22950 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:18cfa352-55a0-522f-9b63-fc4ba7f6f08b", "id": "CVE-2022-22965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22965 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c5b49472-91af-5885-9336-40ec9f77b126", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dc4a28db-bf2f-5c6c-905f-309dc301a754", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:97955c57-05a1-529d-9f6e-716aed84c374", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a31e9803-398d-590b-8d82-382cacd9c476", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9742750c-3aa9-5836-9263-95f38063aa55", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:079762c5-1d1e-5609-97e2-249d93438721", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b1c3c70f-9f57-54cf-ad6d-71fb27250f53", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b3f3df20-44bc-5785-a262-14533ba11dd0", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2814cb1-29a7-5704-b7e8-2fd478f6481e", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a0505a68-8c02-51ef-b4e1-711ca94a8bfe", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:453758f0-3e79-5c53-b7f8-7addb802cebd", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eede2285-2da5-5b16-ba6e-40ab6f4bd32d", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:963f8cac-3cc7-590d-a5c5-7ca1b1fa7698", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-parent." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-parent@3.0.5.RELEASE-tuxcare.1" } ] }