{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3f0c6dda-4096-5b25-8edd-e5f83507e4e7", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-context", "version": "5.2.0.RELEASE-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:91802117-6cff-5dbf-9e87-943b3bf567f8", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2b30a75c-10c1-5ce6-a687-66afc4029881", "id": "CVE-2020-5397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5397 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:46d98146-de08-50e5-9546-6aec4a51fb55", "id": "CVE-2020-5398", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5398 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2043a55b-eef4-5159-af5e-779682e07706", "id": "CVE-2020-5421", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5421 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6415da74-cb5b-5a46-a0dc-01ce079c4ecd", "id": "CVE-2021-22060", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22060 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d80bd6e2-b808-5de5-8628-7888346d0edb", "id": "CVE-2021-22096", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22096 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:68455236-161d-5ec0-8d99-0a4aca01f190", "id": "CVE-2021-22118", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22118 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2948a060-c4e1-561b-af2c-d417ffdb14fa", "id": "CVE-2022-22950", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22950 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5dd7e419-703f-592b-8e6f-72b07a75b421", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:67b08cb3-256d-5eee-8b2b-cb16ac3127b0", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c43d29dd-6f91-5a5e-a797-a9f6e2e2dcdb", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ccf15fb5-0579-5dd4-bf43-a905431a76c1", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3f1d1a8e-5dbd-549a-9f2c-a8555dc77c4c", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d95dbc93-5ea6-52fa-8074-6195936bdd15", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6f44ff03-ba1f-57f8-b8da-7c0afb5d4b94", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2b21d864-e3a1-54f0-9cba-fc2fad9fd0b4", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:36425e45-27bc-5d23-9cb2-1437c2d68e5e", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:982bbddf-2508-5713-b525-1d98917b87af", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:88e4652c-8703-5000-b3c4-eff088a20ed1", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-context 5.2.0.RELEASE-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f81de7de-9f23-5388-9b12-de7079a18694", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:edc4d080-6e1a-540e-a14d-7035f9ecb9eb", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f6f389c2-620e-5d6a-9659-cc66dd20eca2", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2ea7966e-ad25-5f8f-9478-d5104dbc22be", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c5d183b0-3c91-5801-8d4a-34b64167fe2f", "id": "CVE-2025-41249", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41249 is a false positive for org.springframework:spring-context 5.2.0.RELEASE-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d3b199fb-6eaa-5db5-94bb-dd483feb5c66", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4156fda6-4548-5856-a838-69d7a5462875", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e8577335-1bb1-5a3d-999f-77cc41c7ffbb", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:54626e11-1254-5f9e-9348-e536b58fc75c", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:db928ce9-9fb5-5a8b-a56d-ac775d3d5495", "id": "CVE-2026-41838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41838 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:efdc75a4-05e6-5d3e-ace8-cfd7e06fc4d5", "id": "CVE-2026-41839", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41839 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4e7afea7-a46b-535f-9b4b-56e9ed8a006e", "id": "CVE-2026-41840", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41840 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7d4236ff-86bd-5a5a-aaf3-bb4cfac2cb92", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:192bb70f-8735-53e2-a8c2-4a2fe0a262d3", "id": "CVE-2026-41842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41842 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e9be41f6-ef3f-5a46-9f73-c97af996e040", "id": "CVE-2026-41843", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41843 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c2de554d-c423-5a45-8ffa-38d251e4f07f", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:30094e7c-1ddf-50cd-906e-7e04a83a1d0c", "id": "CVE-2026-41845", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41845 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:14020f9f-f391-5512-bcae-ce6c08647700", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bee22153-7c19-5770-93e5-741ac2cac042", "id": "CVE-2026-41847", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41847 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3f8d2182-9e4b-5900-8703-c347ecfce104", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2b5e15e3-4956-5a6e-9426-634824a32c31", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:90631e1a-857d-592d-9ed0-4969c582b126", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:627fe5ff-3f0d-57ee-a318-d87af1177e35", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:684e4b09-1145-592e-ad2a-b4b1129c77d2", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:411120ea-65a1-5a63-bf08-3f3cdaebb18c", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6d3be420-a9cc-5520-8c62-4104a40d92be", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.2" } ] }