{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:65dbf91b-8866-558c-a41b-1410d38e40ec", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-struts", "version": "3.0.5.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c6bd1fa8-21b9-556e-8e95-3e8eed0adb6d", "id": "CVE-2011-2730", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2730 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d48b0c87-eff3-5d2f-bff9-a305904bba0f", "id": "CVE-2011-2894", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2894 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e2f6db8e-be71-5273-8840-7fc1f933f6cc", "id": "CVE-2013-4152", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4152 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4eb40def-013e-5d56-b795-a9c63a6e95a7", "id": "CVE-2013-6429", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6429 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e8d7f9da-ab9c-5f49-9586-64f3468dcd88", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:678fa7d8-3a81-5325-95b6-27f92a2b28af", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a691ee4c-99a1-54da-bc66-9e1839f81d44", "id": "CVE-2014-0054", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0054 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:32794c9d-9a7d-5e1d-b96f-a5ce9085a667", "id": "CVE-2014-0225", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0225 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fcd4e8b8-ac03-541f-9b95-76608d59a475", "id": "CVE-2014-1904", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-1904 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5e857011-990b-5751-b985-a9979ca86659", "id": "CVE-2014-3578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-3578 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c0d60d29-0d3d-5c85-83c2-13d688965222", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62ce6d16-8e49-5c97-8a7c-d35f7610ca63", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0df0bab3-0b8d-57a7-9ba8-b4798453fc42", "id": "CVE-2015-5211", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5211 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dbcd818d-8278-52ed-afc2-109b9d50b37a", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c6fcb2a1-fb8d-5d90-9be5-7bf0e5db6782", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fb439d16-7220-5085-90bb-eafcecca8969", "id": "CVE-2016-9878", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-9878 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e881588b-6665-5fdd-a423-9ce36ed59e18", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:10d49cec-fc07-5bd8-95d5-ab21a0098478", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:501f9329-cc30-55e4-b7fc-0ea92cbbf9f7", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f3766420-d925-5374-bdd9-3613777da264", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1e46be69-36c0-5aa1-add3-77579c381871", "id": "CVE-2018-1271", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1271 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5ca4605e-b503-53d5-90ee-522045e13047", "id": "CVE-2018-1272", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1272 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ff508ca4-c3ff-5a75-aa68-51830682fc80", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1706fba5-cd41-5d6b-a26b-f3aca7bd909b", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f176c552-1ee7-5416-b520-7eccac99ad19", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:03a3c4ca-f568-5f91-ac04-199a904eaa93", "id": "CVE-2022-22950", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22950 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:038b5727-1f59-52fb-9537-fab9c93dedee", "id": "CVE-2022-22965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22965 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b8be0055-c527-5c19-bf40-8ed6b75f2ce9", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:06b0d568-8e97-57d1-969e-01dc13729316", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:42a88977-89a2-57e8-a75d-140843a77517", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:30ac1501-bff7-580d-80c1-5b07a4e5bbd4", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:39d006c9-8c18-58c3-99ac-2f097bd099a7", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f8e1b7ff-48f0-5482-afe1-1c6fd639590d", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cb5a4683-11c5-59b6-ab7e-25cd9dfe46df", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1eef8706-d277-5469-9f44-e091ec3a6127", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:827eb739-9d8c-504a-b88f-53a818f1cf11", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4b59b5a-7222-5589-b949-50d85dcf91f0", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7f105010-4189-5265-bcc5-068aac35c19f", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9336128e-bdab-59e9-a349-64923c2c2263", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:787fa0a1-169d-5a3c-a00a-e5a8f36d08b6", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-struts." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-struts@3.0.5.RELEASE-tuxcare.1" } ] }