{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ab0a0259-8003-57f2-9677-b98b8de178b9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-webflux", "version": "5.3.24-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7e6b2481-7e14-5d9c-ac13-706acc0578ce", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:834b2a96-c243-54bc-bc27-c305b16fde5f", "id": "CVE-2023-20860", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20860 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7282eef8-ad5d-5eb0-8144-a976f46b65f9", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:160bf8be-e7b4-5e15-a2ca-e64391158a85", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b9bcf656-faa5-5e56-9686-d85075193a21", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:53facaeb-1c60-5933-bcc4-28aecb277c7d", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:df0372cd-2991-58af-99dc-1d953757c9dc", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:074249d0-7273-54e0-a178-a96ecd81c242", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:473897a1-db32-572e-8fa4-78d915a23e40", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2ced4f14-e27c-5c22-ad31-1e5460abb697", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:856e510f-73d0-5a68-ab46-9fadcc18ee65", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e84a96fa-fde1-5152-9b70-2f1656fda29a", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:be488b0b-0469-5070-bd62-dc6f128a31a5", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1c6af25a-d250-54a3-ab5f-82e4aa64c4c2", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d5615193-5e9f-532b-ad1e-4d8c93b8461f", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e8049c71-5a6d-5b08-a393-8862d11fdcd0", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a2630a81-c848-51a4-8886-8253a558b77f", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0a8328fb-cd62-5552-989b-35543a535dfb", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6606e770-ec07-5bd0-b269-8c1e33833a38", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5eedb206-6bb2-5698-b164-ec92ed004908", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:518108e8-0613-5223-916d-ccf2af8f5c49", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d3790fba-9596-58fa-965a-5e28ebd10741", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:96eca9ab-5fd0-51c1-88e4-e8a916b426d3", "id": "CVE-2026-41838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41838 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:83e918f9-5e91-53f9-bc37-ec31c9be2794", "id": "CVE-2026-41839", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41839 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c78057b9-0877-5420-bee3-209d0be7303e", "id": "CVE-2026-41840", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41840 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:392ea48c-ea89-561c-a3d6-543ecc32e3c9", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:83371e18-5a9c-52e8-baa7-e5a61764b250", "id": "CVE-2026-41842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41842 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:89bbd696-22a4-5dc5-bd9d-7bfad97bb18e", "id": "CVE-2026-41843", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41843 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:79bcd38f-981c-5ac2-b93f-338140a2cf1c", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2ed82ae7-9aee-55d2-9183-05f8e41aec75", "id": "CVE-2026-41845", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41845 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7c07a894-339d-5f53-876a-7e2240e221e5", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bb2be0f2-f62e-5661-bb4f-8d7a7502ecff", "id": "CVE-2026-41847", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41847 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:25d704fd-26e0-5f80-9c67-918352b1ebe4", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8c75d84e-46c3-5b13-80db-e3e591410e75", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f891ba34-49c8-57d6-b04a-07f9b012fc11", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d41d32e6-161d-523e-bfdc-8fec342322fc", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:598e84ec-1e44-5ec0-845e-a4805938115b", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:52190d3b-1dc3-5a7d-a9df-438debf14329", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a7013077-9b81-54be-b1d4-d52f0b7343ee", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-webflux@5.3.24-tuxcare.2" } ] }