{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0ab5e913-cacc-53f4-814a-7d62e1f896b9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-beans", "version": "5.2.0.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b94afabf-9afa-5c39-bc4e-9f05667f008c", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aca136cb-89af-579f-a5f0-ef59fc6103e1", "id": "CVE-2020-5397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5397 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5f261a73-4ecf-546c-97a0-b4d4a2f667b8", "id": "CVE-2020-5398", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5398 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e7de1807-9037-592e-b9a4-2890dd4ddb12", "id": "CVE-2020-5421", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5421 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5854d4d0-c3a8-5695-b6e6-dce1fd425b25", "id": "CVE-2021-22060", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22060 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:08f6ff2a-9321-553c-ace0-752dc2134908", "id": "CVE-2021-22096", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22096 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:92059443-fec4-5195-9fcd-3657654a134a", "id": "CVE-2021-22118", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22118 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2a0b748d-8504-51a5-ae44-b37a11297681", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:242a3868-74cd-5ba1-896d-0d555f1adba3", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9a13931d-8f68-5120-8132-02460b677dff", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:06541a31-ccca-55ec-bdfd-e78e3ca13745", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:74b9c923-cc29-57ad-860a-98ab69a5826e", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:861fdffc-d2f2-5098-876f-630b3cdf8e12", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f0695cce-ae01-51b8-b539-e60b3bc6c380", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f1d3361f-baa7-58b5-8b40-434f82f31829", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:97122b3c-338b-53f0-ac8a-3fb6a3949474", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dbc00b90-db99-5625-bc0e-1e684a8d899f", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2a1e3a67-c5bb-5500-9db1-5530730a2a79", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4436e33d-10d9-5a0a-ab15-400d3d7164b1", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-beans 5.2.0.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7346a2a0-a0a5-5201-a0c3-2f463eb9da68", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1dbd926d-cc06-5fcb-b128-ef47f1a4d283", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:23ac2ff4-b8f6-5a24-bbd8-26c7acb9d6a7", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c316354b-0028-5af7-b276-ef622c95fda9", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:17ba5a00-5972-5866-8ca6-22a51d841c06", "id": "CVE-2025-41249", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41249 is a false positive for org.springframework:spring-beans 5.2.0.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e329478f-4c30-575b-b903-419ec0cf0097", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5e6becd2-9c5e-5dde-b32e-42e025e431ed", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d0efcbbe-ddae-5222-aec3-71a1466cdf92", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f5d8506f-da6b-551e-9ec4-26d9261b2572", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6c98540f-18c8-5ad6-b992-48a53cb68b03", "id": "CVE-2026-41838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41838 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:19f5fe0b-4bd2-5372-a532-4aa8be6fa541", "id": "CVE-2026-41839", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41839 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:40624e2b-f44f-5274-bcfc-a44fca8bf05c", "id": "CVE-2026-41840", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41840 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c5e014fb-4af0-5e50-80e7-b1be56a52e1e", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:96fb37ed-5f12-5307-abc8-4dd6644c7e3d", "id": "CVE-2026-41842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41842 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7353bd51-5e2c-59b0-a5d3-7fc3b1675237", "id": "CVE-2026-41843", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41843 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1cbf2f6c-eea4-5a5a-8eed-ce2f1a3d75db", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d744edea-7f8e-5591-932e-b5e203f95a5e", "id": "CVE-2026-41845", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41845 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cf56c02e-26ba-55ce-985c-323a44c1da17", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:445411d3-b13c-5a13-bd09-9e50184e0e74", "id": "CVE-2026-41847", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41847 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:790f1dba-0c42-536b-8091-d3c5b3d327ef", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fbc837d8-ea19-58db-930e-b1797d3931c6", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c1b04d66-d315-5eb6-abc3-4b026938f6d8", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:80dfd6f6-b6b3-5404-9404-ea41b9588b7a", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f853c489-54c8-58f1-90c9-2d0d4f731fd3", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:64fdb530-30e3-560f-adb3-747e75509e32", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ee4bf30b-0c79-570c-a931-d9cd246a5241", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-beans." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-beans@5.2.0.RELEASE-tuxcare.3" } ] }