{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a9d0b07b-74e2-51a2-81e6-950788a2d0dd", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1", "type": "library", "group": "org.springframework.security", "name": "spring-security-rsocket", "version": "5.8.15.tuxcare.1", "purl": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b0d92901-4640-5d02-88fa-ef52fe750cf5", "id": "CVE-2007-1651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1651 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bdce329d-a193-5430-b102-a91ae9de6cd1", "id": "CVE-2007-1652", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1652 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6224da08-78e5-55fd-baa6-2338d9249d6f", "id": "CVE-2018-1258", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1258 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f6fac5c9-a217-5f14-b595-71efe8a5fb8d", "id": "CVE-2020-5408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5408 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a8b272df-3fcf-5230-a27a-e92a8da7a5c8", "id": "CVE-2023-34042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34042 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1c69a718-d60d-5dff-82eb-72e5f6e45796", "id": "CVE-2024-38827", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38827 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:64c1437c-c1b0-5079-9724-3202a68b5cd5", "id": "CVE-2025-22228", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22228 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b6bc428c-19e1-56a8-982c-ee684f7c7396", "id": "CVE-2025-41248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41248 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ecdf87f1-9100-59d7-b105-459a110dbaca", "id": "CVE-2026-22732", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22732 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:770907e0-b30c-5158-846d-352c3600d929", "id": "CVE-2026-22746", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22746 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c922444a-3e8c-59f8-97f4-420045b3ad77", "id": "CVE-2026-22747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22747 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae981361-4130-5711-ba47-27eade702b71", "id": "CVE-2026-22748", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22748 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9397734c-813b-5ecb-a6d0-44f3c080f6e0", "id": "CVE-2026-22753", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22753 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b67bd571-bead-5a3b-8bb5-21981bf88081", "id": "CVE-2026-22754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22754 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9307148d-f0d5-56ac-9a9f-90bb460d5ae8", "id": "CVE-2026-40988", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40988 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62c39d73-e730-5a31-a217-002402d200bf", "id": "CVE-2026-41003", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41003 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c1bc3750-0b5d-51b8-af39-443d5c0afab6", "id": "CVE-2026-41694", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41694 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:42602af9-5351-52a1-aafc-c4ce7e3f5e46", "id": "CVE-2026-41706", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41706 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:26992adf-e9c1-537e-b6eb-746aa4c9ffca", "id": "CVE-2026-47838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-47838 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.security/spring-security-rsocket@5.8.15.tuxcare.1" } ] }