{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:862c1428-0789-5e94-8aac-e96b6091d30e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-web", "version": "3.0.5.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7e37d1a2-25ab-5406-8d4d-58451ad277cc", "id": "CVE-2011-2730", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2730 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c6d5ab41-1785-5ae1-b9b5-a9a644e731a2", "id": "CVE-2011-2894", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2894 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cde0e66e-536d-52e6-8f42-0c41b5d19d53", "id": "CVE-2013-4152", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4152 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:038fc44a-aaef-5c47-8af9-c64eec21a6d5", "id": "CVE-2013-6429", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6429 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eee4cdba-06c8-51ff-90d1-5854daf642ac", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cc781d8a-6962-5f2b-8e37-9d2c85a466a1", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b22fb64-851c-5275-a172-63431d9c6c46", "id": "CVE-2014-0054", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0054 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:71cd4dde-191b-50ed-a955-bc92796bb5b4", "id": "CVE-2014-0225", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0225 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:935a9908-2236-539e-98ac-31d376dc3365", "id": "CVE-2014-1904", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-1904 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a5a97a58-c464-5ad6-affe-3713c8e02720", "id": "CVE-2014-3578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-3578 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7e5c5292-2d2d-5802-88c8-7a0612eb0f7a", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f5716d9b-5442-5cbb-a136-9696d0feb2a0", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:03ae5532-195a-50ac-b21f-118e6dc45cf3", "id": "CVE-2015-5211", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5211 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b3545c38-72c9-5e80-985f-46deb3cda667", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3d5aeb2f-2240-565a-9c2a-12de2e2103bf", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:90956e20-fdbe-572a-b470-c924da3c2c94", "id": "CVE-2016-9878", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-9878 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4e083a62-510f-51d2-bbd7-e57a5f01665c", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f689fa2a-0dae-5549-8e81-1bd08dd40007", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3aa35f1e-0859-533b-a620-32da23011a41", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f424ea47-b9a5-589d-ac7a-963761dc9e16", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9c12ac1d-930b-5bf8-b695-ddc38dfa5d5f", "id": "CVE-2018-1271", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1271 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b4972251-13d4-517e-9038-3786003a98a2", "id": "CVE-2018-1272", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1272 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ecafd0a0-b062-5de2-a367-51b3220df6cc", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d1019bb6-e209-5cda-b0cf-697da072ab10", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef827771-0b7f-57ce-aeea-9d5774be909b", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1122ce90-40ae-5c09-91dd-a92af4a47e3e", "id": "CVE-2022-22950", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22950 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f1103953-9ff5-5a06-84e3-4a11b7e22121", "id": "CVE-2022-22965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22965 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9c2da671-1be0-5af3-84dd-0de50432a5bc", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:184379d4-be9c-5fec-a0a4-063ab3b73817", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:39303702-cef3-5267-acbe-4298ab288de9", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2481e3ae-25cf-58a2-835e-8491b6fb6221", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:10d3b890-7655-516c-a8ad-b009f0af5e74", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:56dc6793-db3f-52c5-b2fa-6ec86563891c", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:64f8bb6c-9d76-5087-aba2-9ca4c0bdac8e", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fa49d268-53e7-567d-a09d-c8b75405225d", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b6b91715-f357-542e-a3c8-0a860f0dbe27", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:680d1a98-ce99-5915-8127-2acd4332e8b2", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:be4f1c2d-7cf5-548f-9606-343d1556547f", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2fd66010-a7f4-5c32-b7b2-7b3c749d0117", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:adb7231b-275d-5c4b-a8dd-9c3432e21db6", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-web." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-web@3.0.5.RELEASE-tuxcare.1" } ] }