{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:412dd5c1-5c90-59f7-a4ef-bbb7b5b25e0b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-webmvc-portlet", "version": "3.0.5.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b38f83cc-b764-5d5c-abee-a11e153e7fb6", "id": "CVE-2011-2730", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2730 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3cd693f5-2d1d-5518-9eaa-d72f6629a683", "id": "CVE-2011-2894", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2894 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a90c4e13-7991-565b-bb5d-940ce9060f6b", "id": "CVE-2013-4152", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4152 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:058543fb-3fb8-58c4-be13-7ce2a0c850b0", "id": "CVE-2013-6429", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6429 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6fcddd91-3c50-5beb-8ec5-6e6dc07e6350", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:693dc6c3-dbe9-561d-8571-d897b89d2a14", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a7f233ce-98fe-53d7-8ff8-d5920e7a9c75", "id": "CVE-2014-0054", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0054 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b8ad8cbf-9d97-59e8-86f8-f6739ae9ac3e", "id": "CVE-2014-0225", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0225 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:19cabcab-89af-57f5-9371-6458a545f350", "id": "CVE-2014-1904", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-1904 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0b951eb1-5437-5b20-b389-45bc541e7d33", "id": "CVE-2014-3578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-3578 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cfee7aa4-aca7-5395-bec2-a0fe3b6ca44a", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3b819d5c-a119-5c13-a932-996d4fe21090", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2446731a-95e8-5431-89e1-e4d3296dd147", "id": "CVE-2015-5211", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5211 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db47d366-4847-5986-85bf-d5e9c1121a71", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3c4fac56-dd10-50f9-876d-45ff5d3d2d4e", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f0057cb6-c1f3-55b3-a4d7-367ee9fdb078", "id": "CVE-2016-9878", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-9878 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fe237cf5-6245-57a5-a014-aa77d1d22821", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7fff02bc-295d-51bf-ae31-26c9155a9cab", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6ea5a5b9-fe19-50e4-b649-da9ba7bd0c96", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fbea1696-c361-58f7-989c-cdecd32992e4", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:362adac0-b1a8-5b34-8c8d-1d0c54a78641", "id": "CVE-2018-1271", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1271 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:46c8fedd-1255-53a2-afaf-909ece5e57b1", "id": "CVE-2018-1272", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1272 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b167f2ac-07f8-58c3-b17e-ba8716e37f39", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:88d88b0f-0edd-54a5-b11f-a81f84f3d160", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:30ebfa73-1688-51ee-835d-7e0fe189e52b", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:67099dd3-4e43-50cb-b07f-80f525731e29", "id": "CVE-2022-22950", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22950 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:55d9208c-5c15-5383-ae8c-9aab9e4a3c54", "id": "CVE-2022-22965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22965 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9522d8b9-b501-5c14-a530-af4d9ee10881", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d99971d0-2c8f-5e20-b96f-ec69e0563bd1", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f406a32-dc98-58cd-a967-ffc904ef0fbc", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1e13dcfb-9933-5117-bb92-269a4e758b2e", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e63d2947-a68f-5759-9a84-50a8ed528391", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a9893917-64e4-5bd3-8d99-2aea15de47a1", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c002db60-dc0e-505c-9b0a-ceae1dca2687", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a83dbe82-c188-5184-b5e1-6091d6dbfd22", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b53dfcf5-fb2e-56a3-a520-15c5b3ce9f0f", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7cec718e-c65b-53d4-900c-055b3e09e4b1", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c78eab85-5413-5139-905a-c93ab4e953b0", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ac8901e8-fb1c-56a2-8b80-424e1d97ea65", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e9d70f5a-488d-51b6-9f58-ec33062d4a12", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc-portlet." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-webmvc-portlet@3.0.5.RELEASE-tuxcare.1" } ] }