{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e054f2d6-2e4f-5a5e-8b92-705b71efc820", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-webmvc", "version": "5.3.24-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ea5201bf-7768-5bac-890e-359bcd269d95", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1f9a8f2d-2c63-593d-a196-480e8f0c570a", "id": "CVE-2023-20860", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20860 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2c07bb95-0401-5b08-8304-66e397fbef19", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e65a61b7-ee87-54ac-89fe-f92861c73a2b", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4bbcc000-8ed2-5c25-84eb-a01716d5317d", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f7ca9a27-6d59-5e15-9469-1a0a8b211acb", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2734a311-bb78-5dff-af17-926afdd8e29f", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:36fc98ab-c1e3-53e2-8b5d-e555c13963fa", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:239f91e9-a2c9-554b-bc3f-3ed963216be2", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2634408d-6d33-5cde-a5aa-5e8121a39a62", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ba450f1c-1fb2-5a09-b656-3773bc140006", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:98e8eb73-6ef0-58de-b318-f236d6921e86", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:66a9309c-d810-5615-9329-c16c381bef73", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d170b82b-8090-54ec-ae72-8c5ea25d3a6e", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f9af0e6f-2e86-5e26-84d3-b8c128e90f54", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:df76f0bf-c993-5f5a-a962-2769b78f22cb", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:439bd346-4258-5493-952c-5e92ff339b9a", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:766db63e-57e4-538c-964f-866a60f5805d", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7f961c11-a7a9-5063-bd7d-e7408c9f1f05", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b4aa4dd-7c54-5081-bda8-afee76886588", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:90993e51-34ea-5b2f-9036-c4d30d629fef", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a7a60e91-a618-539c-bc10-eced0ea5b4cc", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2dbfdcd0-6885-5d1b-960e-55db112bea7d", "id": "CVE-2026-41838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41838 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dc9f2bb3-98e4-5391-aa6d-0f2dfe33136c", "id": "CVE-2026-41839", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41839 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e7fc1cc2-9502-5c38-90ae-2593262cf6bf", "id": "CVE-2026-41840", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41840 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b0ed4ac5-d61f-55fb-831c-60b4e246cdaa", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9424cb22-e2c3-5764-9c2f-6ba0f1fd880b", "id": "CVE-2026-41842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41842 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e454419d-1fde-5c1b-a3c8-be2e25aac0fe", "id": "CVE-2026-41843", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41843 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e735ddf6-cecf-5eda-b1bf-b5dda02cdd6a", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:94f9d2c7-22e6-57e6-af7d-e26236895d62", "id": "CVE-2026-41845", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41845 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e3762362-f3e1-51e9-87e6-49ba18ba8bb1", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2a32b44b-32bd-5612-922a-5383c5c4d19f", "id": "CVE-2026-41847", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41847 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7f987e93-a7bf-5518-8370-9c530e61df43", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9dcd917e-af83-5d50-9af7-a9978ba5b716", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a2881fe6-03f7-5e1b-802a-b144786720af", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e6330ccf-4324-5573-9b74-9935c16d07b6", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7695c896-9795-54a5-a65d-70e10191fedb", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9a58bc3f-0355-5c10-80d1-f4bc9a03b890", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:91b1fc11-cd42-5452-9c86-9d641fd3cc7b", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 5.3.24-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.24-tuxcare.2" } ] }