{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ccd0aa12-cdc6-5582-a392-ce3cb906afec", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare", "type": "library", "group": "org.springframework.security", "name": "spring-security-cas", "version": "5.8.15.tuxcare", "purl": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6814d28b-b2d9-526b-8913-86305396a22a", "id": "CVE-2007-1651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1651 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:4ba06283-6234-530b-9282-e0579cd83f31", "id": "CVE-2007-1652", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1652 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:5bf0387e-8280-5c51-8abd-3b9025d5e39c", "id": "CVE-2018-1258", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1258 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:fd3568d7-2109-5638-90ea-446d887bedef", "id": "CVE-2020-5408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5408 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:13e3566a-9c3b-5d6f-82e7-49eb02b90387", "id": "CVE-2023-34042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34042 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:1b6f78cf-c3a1-5056-971d-58dfefa65e83", "id": "CVE-2024-38827", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38827 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:2bdc74e9-ad5e-5247-8ce5-6dec6f877f32", "id": "CVE-2025-22228", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22228 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:78ae1836-c169-5a55-96c2-7b3123a27be7", "id": "CVE-2025-41248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41248 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:0aac7a6b-2ff0-56f8-be3a-60bcb1cc9e29", "id": "CVE-2026-22732", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22732 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:58fed112-bdd0-59af-a9b7-e9a5b0a6405e", "id": "CVE-2026-22746", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22746 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:be12a23b-d821-5a81-97c6-d07448639d53", "id": "CVE-2026-22747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22747 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:c3090c28-90a0-5839-bb80-44469c958916", "id": "CVE-2026-22748", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22748 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:933fa9e8-0909-5a3c-abab-4ebd83f9f091", "id": "CVE-2026-22753", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22753 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:0e319240-dc43-5b93-b4b5-8dc231f76163", "id": "CVE-2026-22754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22754 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:72693223-cf56-5151-8b24-faa9e8f0be54", "id": "CVE-2026-40988", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40988 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:5661f6ae-8f90-5b58-a913-ac7b76edd9cf", "id": "CVE-2026-41003", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41003 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:ac8013ed-2a6c-5b39-8db8-406ccff2e3c9", "id": "CVE-2026-41694", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41694 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:15cba07c-778e-53ba-b1b7-490f4a66d7ef", "id": "CVE-2026-41706", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41706 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:03014a2f-52fa-53ed-a977-4bcb530aeeb9", "id": "CVE-2026-47838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-47838 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare" } ] }