{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:501b05ef-fc66-52e8-bc22-59ae528d10f6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare", "type": "library", "group": "org.springframework.security", "name": "spring-security-oauth2-client", "version": "5.8.15.tuxcare", "purl": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:fa8a2d88-3f25-5e67-8da6-8e9b1112a612", "id": "CVE-2007-1651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1651 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:45d58dee-7a65-59b9-8b8a-490a22966f5c", "id": "CVE-2007-1652", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1652 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:6d763e56-1c9b-53b6-b9d7-b0bbb00e66d8", "id": "CVE-2018-1258", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1258 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:c50fbcf2-ddf7-58cb-9cb0-69e59af353a6", "id": "CVE-2020-5408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5408 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:ce4ff870-06f1-5602-af4c-62f35cdc3544", "id": "CVE-2023-34042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34042 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:1b0a0c60-adc4-57cf-9dc6-e2551e040d4c", "id": "CVE-2024-38827", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38827 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:662484fa-2eea-5c54-95f1-2733d6e97b3a", "id": "CVE-2025-22228", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22228 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:e8770521-a395-559a-a193-a1a722bb682e", "id": "CVE-2025-41248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41248 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:6a7a0007-84d9-5680-be89-9ef92a16cf6a", "id": "CVE-2026-22732", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22732 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:24faa5f4-26fa-5301-9707-bfb64fe609d9", "id": "CVE-2026-22746", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22746 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:d88e02fb-c7ee-5060-97fc-1d918ed7da39", "id": "CVE-2026-22747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22747 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:f0c4ec50-e290-5ef3-a4bb-adccf523b51e", "id": "CVE-2026-22748", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22748 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:0766d7c4-9b2d-5e1e-a853-aeb6785803ba", "id": "CVE-2026-22753", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22753 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:a77f92df-d411-5af1-9b28-d4421c8193ba", "id": "CVE-2026-22754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22754 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:15a15716-adce-5584-a77c-7f35f62c4c71", "id": "CVE-2026-40988", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40988 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:273456be-c621-52ad-af2b-64c5fb542b22", "id": "CVE-2026-41003", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41003 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:b1dc93d6-2d0d-5a1f-867e-466fd35f6161", "id": "CVE-2026-41694", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41694 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:d5fc12e2-1de8-5588-85e7-750b2d78c7bc", "id": "CVE-2026-41706", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41706 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }, { "bom-ref": "urn:uuid:64a0ab05-9b5b-5fb7-a603-eb0fff1e794e", "id": "CVE-2026-47838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-47838 affects version 5.8.15.tuxcare of org.springframework.security:spring-security-oauth2-client." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.security/spring-security-oauth2-client@5.8.15.tuxcare" } ] }