{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:37f8a0c7-24b4-580c-a532-48921cf329be", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-context-support@5.3.27-tuxcare.4", "type": "library", "group": "org.springframework", "name": "spring-context-support", "version": "5.3.27-tuxcare.4", "purl": "pkg:maven/org.springframework/spring-context-support@5.3.27-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:0a4ffb22-6634-535c-be8d-e13550198d8e", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.27-tuxcare.4 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:76d7fd56-4cbc-5880-a4eb-79bfbe10c7ff", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.27-tuxcare.4 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:035c464e-ec07-5bf1-a610-873d70ff4122", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.27-tuxcare.4 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9068a3f2-e5fd-5353-b693-4a4fecf22990", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.27-tuxcare.4 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:238ad4d9-a2bd-5b39-ab42-234b84f439bd", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.27-tuxcare.4 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:34c72e6c-570f-538f-8d0c-916148b6b982", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.27-tuxcare.4 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:19647404-950a-5f78-8c6f-2861afd1e54d", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.27-tuxcare.4 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7d409d03-9574-57f4-bd8f-44fd5c267d88", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.27-tuxcare.4 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:698909ef-19d6-5538-934a-8f63d8b7d5ff", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.27-tuxcare.4 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a249f04e-cbda-53c8-ad85-309327ea9d4e", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.27-tuxcare.4 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c4c70080-b023-5236-ac97-8e20a17a7020", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.27-tuxcare.4 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:de1d5cc5-e852-587b-914e-c60146adbe60", "id": "CVE-2025-41234", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41234 is a false positive for org.springframework:spring-context-support 5.3.27-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3e29308e-c728-58a2-88be-49ba8ef3a1ad", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.27-tuxcare.4 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8d3feb13-95d6-5185-a11b-bafda5495058", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.27-tuxcare.4 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5ae73af9-8a1b-5b88-8b6b-4d6d51b6af1e", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.27-tuxcare.4 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e7fcccc9-e7c9-577f-9655-43c9fc200e4d", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.27-tuxcare.4 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4bf8c1a4-bb2b-54fe-bae9-fda2a1ddd0a5", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.27-tuxcare.4 of org.springframework:spring-context-support." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-context-support@5.3.27-tuxcare.4" } ] }