{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9c3d215e-f852-5dbd-b4a7-0fe39ebf1a53", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-framework-bom", "version": "5.3.24-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ed80c497-c8aa-5255-89b5-9e49991bc307", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:299b1d21-27ad-53a5-899b-b75912be58d1", "id": "CVE-2023-20860", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20860 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3866894c-f32d-528b-9254-31a47b41327c", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:44699cd6-9244-5e2e-b8ff-5686cd058d14", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8cc5b1ee-b8c8-5655-9e90-4b3a78172d8a", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ee70de2f-4bae-5fe1-87e8-1b8c621eaaf2", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b19140d4-83bf-5e24-b8c7-e2794f023930", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5e47a2ac-ea59-5ffa-af8c-7c5002128c1c", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e2bb460d-e86a-5ffe-b863-42fe9660f78a", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fb93a340-946c-540d-a6e7-a0717150daf1", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:20376a0d-7136-57ef-80da-f84472926a99", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:72c88501-3b02-531b-9681-5e0df72d5234", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b071d9bf-8996-5b10-9dd2-b22850955e3f", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4685da71-8ef7-5f24-811e-e99ccc09886d", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1a1785cd-66c0-5e5d-9b1e-4c83375f0489", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5b1257cc-c791-55e4-ba15-64b2934f0c31", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e65f323d-2250-56bf-865d-0924e3217e91", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8e19dea9-6581-5cb4-be7b-9f25fe92a71c", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3d5621ce-d2d5-53fb-bc61-869970c623f4", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a99aeaa2-fd3b-586a-b5f0-c4da0d2452d0", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c550a0ea-1c81-5b78-afd2-45e4a1dae30b", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e8591f4f-7ac6-5d07-8a6e-1c6b7cee522b", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4131b620-6b50-540e-8b51-e088600e0cf1", "id": "CVE-2026-41838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41838 affects version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:99be42b7-937c-5f34-b5d2-152db58b0295", "id": "CVE-2026-41839", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41839 affects version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0b89d28f-af99-51d3-9e5d-90bccf915ee0", "id": "CVE-2026-41840", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41840 affects version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c5ec7835-b026-5617-80ab-09b65aec0be8", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:53e9db95-5045-5645-960d-0248fedfe2c1", "id": "CVE-2026-41842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41842 affects version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b437c82e-66e3-5b0d-974b-f5dac5b86b83", "id": "CVE-2026-41843", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41843 affects version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d52e2d12-60a5-5038-aaa3-e84084e8dc8b", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d6a39d69-4ed4-5134-8dff-19d1c611823a", "id": "CVE-2026-41845", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41845 affects version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eff053c3-1e2a-53b1-a748-0f28d20a4a58", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:20729232-41de-5891-a7fe-fca8bed5b068", "id": "CVE-2026-41847", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41847 affects version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f8c727d3-a7c1-5eeb-8655-d7351b042c43", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:153f376f-2205-597d-b5f9-79c6a1c90d10", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fe5b5697-89ca-5ad0-a7e3-90963857e7c8", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d491394a-c885-5c44-bc46-9ab8bac7d5f9", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0f227e5a-ba6c-5889-8f31-afb66eb58b78", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c30392d6-ee36-5127-8ab5-9af8c46d53c0", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:488232cb-97af-5b9c-a622-dcf9da7f40c7", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 5.3.24-tuxcare.2 of org.springframework:spring-framework-bom." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-framework-bom@5.3.24-tuxcare.2" } ] }