{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:14ba295a-1bfe-5244-bbea-01cee95bc724", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-context", "version": "5.2.0.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3f2639c8-e4ab-5387-a941-3950b499eead", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:306966cb-53f1-5443-bc33-4abaf12651cc", "id": "CVE-2020-5397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5397 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5c92a95b-c3cc-5437-97e3-8299bc6da0cc", "id": "CVE-2020-5398", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5398 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:49c9b53b-d31b-5224-b091-3ea65a7a5f19", "id": "CVE-2020-5421", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5421 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6d5f6935-80f1-5a0f-87f5-41bb4253162d", "id": "CVE-2021-22060", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22060 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:54619c16-5635-5e76-9b68-e1348b3b158f", "id": "CVE-2021-22096", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22096 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:da3803f6-3008-5090-a624-f7a3d1688cea", "id": "CVE-2021-22118", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22118 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e1bc6e97-28d9-5670-98b6-cda009e90542", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c19e252a-b7db-59f4-9180-1f2a5d733513", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:edfd5354-4c80-5881-b3b5-7cf3ff5afaf5", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:91ae546e-cfdc-58c6-8a45-9fda823c008e", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:11a70c00-f16a-5549-95cc-ad55dda9fb1d", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c1e71c66-8d7b-5ed1-bbcc-50f5c938cee4", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:66ef2457-7a8d-5b19-ae6e-5be032a7ec65", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0c580a36-5b7d-5b42-b89a-a4eef75ef6d5", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3a2c8dfe-3691-5c9b-894a-1568f0540fc8", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2119578d-1b0a-5ff1-9ef6-b78c9392616d", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c79bb717-533f-5dfd-8e98-6f123f2abf3f", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1ac016d2-001e-547b-b2e2-b0892d224a43", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-context 5.2.0.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:71e5c5ec-949d-5ccd-aa6e-5aaaf74fbdb6", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b8c4a58a-ade5-583f-bc5a-1c7d396f5f5e", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d736d051-6fad-5ab1-a133-13490cc72334", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:721a166e-aa35-5188-9e34-49af55474ecd", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a6f03efb-ac6a-57f8-8cad-93e55c33c35e", "id": "CVE-2025-41249", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41249 is a false positive for org.springframework:spring-context 5.2.0.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b26af8f4-d5c6-55a2-965e-83b91cdf6e82", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ce8cb577-231a-5e43-8ab8-0a6118328752", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2f620432-89f6-5f27-aded-13b7db67ede2", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:292eab72-2b58-52e6-9332-087f316c2447", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:44038418-18de-5958-b07a-1fe6c50d2f1d", "id": "CVE-2026-41838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41838 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:56188437-387f-5a61-b351-25a5b1e9bbe8", "id": "CVE-2026-41839", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41839 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6e361123-f4c0-5f62-a58e-965e2251bfd5", "id": "CVE-2026-41840", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41840 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1cdb13a0-c8ee-59a0-af1d-778e83b24a09", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7a70953f-0030-5c6f-b537-e68b6ad4aaa7", "id": "CVE-2026-41842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41842 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e6b5b714-9603-5976-9aec-8b0199560024", "id": "CVE-2026-41843", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41843 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dbcb428a-2e64-5e11-b380-804a52b640f9", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3e55263a-06c9-5b7b-a701-1a245e0462eb", "id": "CVE-2026-41845", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41845 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4b860887-9a0c-5874-831e-328be598d987", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7dc4c4d7-f99f-5d30-81fc-7860cefb5483", "id": "CVE-2026-41847", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41847 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:55d62916-a448-50ea-b271-ae7affb240b7", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c3a03db7-f850-59da-8351-e52bf01108dc", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5ddb3359-0911-529b-aeb7-56419392ad5f", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:010f133a-5239-5670-aeea-9a71729e3426", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0aa9c4ad-e9d2-5ded-99b0-0465d5954137", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:470e0a1e-8db5-5d72-88e2-de3cf80cb9f8", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8becafd5-577a-5a90-b584-f906e6af57f6", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-context." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-context@5.2.0.RELEASE-tuxcare.3" } ] }