{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0ad63d3d-c847-55f6-b0f1-6628f12b8694", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-webmvc", "version": "3.0.5.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e2fd4d32-ec6c-5e4d-9473-da4b826c3806", "id": "CVE-2011-2730", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2730 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ca5616ba-4d26-5614-bd89-1f6ab87b06be", "id": "CVE-2011-2894", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2894 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a1ee2836-a3ce-51fe-85c9-85380c6fdedf", "id": "CVE-2013-4152", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4152 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ee403ece-dc0e-5c79-b506-196bd50d688b", "id": "CVE-2013-6429", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6429 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b2c8d872-5e69-544e-8768-c3c11c4a26ff", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd746d96-e835-51b6-a763-c9b8af9f107c", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:00cd20e0-14bd-5545-8616-c784485b691d", "id": "CVE-2014-0054", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0054 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e6f5a1a4-990a-504e-b92a-6239f3098c98", "id": "CVE-2014-0225", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0225 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f90fd374-d688-5249-b112-ca43ec262733", "id": "CVE-2014-1904", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-1904 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4028b0c2-1119-5032-b0a8-cc48d59fa58b", "id": "CVE-2014-3578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-3578 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fb12d35f-7c92-5cda-9472-e1925d5fb3bb", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:27bd5641-c69f-5691-ba25-03db74e085b7", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7ed010e8-3100-5182-9518-84e19a5defb9", "id": "CVE-2015-5211", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5211 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:712b8d37-a0b2-57d4-9c87-2b5b3fb25d33", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6c912448-cc34-5ee0-8fad-d271a43b0e04", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fc4ab306-a456-5336-b3f7-6dc7cfbe4d4e", "id": "CVE-2016-9878", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-9878 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3ba0a3b8-0d84-565d-baf9-8dc33b5206f9", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8fc1382f-19c8-5395-99cb-78bf92fcea69", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:52567124-79d0-527f-aa7c-572c4ebe6632", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:000a5d4d-da93-5532-8ad1-3e40c952ba38", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:14979278-30d2-5fe4-86fc-4e0d1db4180b", "id": "CVE-2018-1271", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1271 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b57f50a-37b5-5bd9-be17-e624820b357a", "id": "CVE-2018-1272", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1272 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:10039f75-1c98-50a7-a2bb-ee167ed2ee8a", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eb9c55a3-9be1-5f75-bc95-9b041540e2ec", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2ba5a232-d449-5d9f-af4b-9220859a7fdb", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:40487d33-c99a-527c-9412-2e7a72c9c83f", "id": "CVE-2022-22950", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22950 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:90381c94-8c6a-5c8c-8c2a-cce8b41af03b", "id": "CVE-2022-22965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22965 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1c1237e9-85b4-5466-938b-75925985ec2e", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:40046aba-e5f5-5922-8818-a1e68d60ee44", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6890d28b-01bb-54a0-87eb-52cf52774751", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:79d92bbd-6cb0-5cfe-bd47-74c689e57bb3", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8605f7fc-e9a1-5be5-86a4-33b0a719e6e6", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bc453297-9945-524f-ae52-51effc26930b", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:55da81e1-ec6b-52db-b32e-a7a3ffb4cd87", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c9435337-fa33-5bf0-b5ff-86b6e3a5ec26", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:be964093-cbbf-52b4-ae22-3230ee9eb0c1", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3a2c503b-2bbe-5a29-aabe-9f33fea2d507", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3ee6d00a-705b-52d5-8519-29d3687a1edf", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:993515f0-453b-5c39-bd2f-ce000e15ecc0", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c5e844f9-5f40-5367-8497-3e1ea0d551bb", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@3.0.5.RELEASE-tuxcare.1" } ] }