{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:63a0cd7e-f007-5dd3-a0cb-470b0530cd8a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-webmvc", "version": "5.3.25-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a25b3298-9457-5b74-a5e1-e4a8225c0c96", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:89c0dd3e-0ce5-5a96-b0be-1938f489e051", "id": "CVE-2023-20860", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20860 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3faec94e-96ce-5e2d-934f-83a299fe3537", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:052fadd0-3c22-5d90-93a7-39b66c2ec49c", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2aed7ae3-51d0-5f24-a371-44f3613dc8d5", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:27aa35e7-13e5-518e-9dc5-b21d830cd3f9", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b16f6b1a-649b-5bd2-9c1a-ddceb92be472", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8a0d38da-1ec4-5b86-bc04-89dfc29e25db", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:83d48eb4-6534-5833-a758-55b09b43d92d", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:14d0a2fa-4cf7-55a4-9398-92bca2bfb053", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4040b744-394a-5acd-a229-fb1aa7e1d667", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:89dfb423-9a5d-58f5-9296-0777176b4e94", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:76266ab0-60cb-5302-8946-82333e5af03c", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fc1f9aa0-2775-5d9f-8065-478f53ce3fc2", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0f759548-509e-5ef9-a01f-db20ba718a81", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:792cf24b-5a86-517c-88ca-45e8bc42dcb0", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:91924efb-570f-5d94-b1eb-f4780cf56e2d", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bbb99fce-94d5-5c29-ab0b-a09b589e45a8", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8942fd17-13ff-5ca5-9a8e-eb3b80223961", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c09be1c7-ba60-5509-a60b-6e7ff9dabf81", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:34702778-ee03-5e2c-b462-c220a20bb667", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b88e7b9c-3f45-5d73-b9df-02564022c406", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:72fa41b4-792a-539c-8051-491a909dff26", "id": "CVE-2026-41838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41838 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3ac2e1b7-d57f-5ab9-bc10-ec4a869c1a06", "id": "CVE-2026-41839", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41839 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dd1676f0-e44d-5eea-add3-075455f17add", "id": "CVE-2026-41840", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41840 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4b1a042e-2575-504a-863d-99bdab4ec8ac", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f287e41b-1288-57ee-aaff-b32d2a167027", "id": "CVE-2026-41842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41842 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:11be430a-5ea6-5df3-a26a-65005640f59d", "id": "CVE-2026-41843", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41843 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4ffa1e9f-4970-5302-b3cb-2afe72e9db38", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:232d1228-aaa2-5903-8191-3a66fefcb033", "id": "CVE-2026-41845", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41845 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:340d5998-bcd7-52a4-bf9e-396b72f9a0c8", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1981cd5c-ddb1-551b-b30f-8a530cd7748a", "id": "CVE-2026-41847", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41847 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1e0c0901-e78f-5d88-98d5-75676037bd7c", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2d24ced7-3e47-5889-8f59-1309752a23a3", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b5a3caf2-d983-5382-853b-570b7da1d914", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2383c9cd-c66f-5692-8a47-e2c72197eebb", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c975fa35-07db-5313-9c92-e66acf457db2", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a76dbab0-65fd-59eb-9f64-36990a2efc43", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:938c66a6-7ee8-5d64-b29a-0640138dcc59", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 5.3.25-tuxcare.2 of org.springframework:spring-webmvc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-webmvc@5.3.25-tuxcare.2" } ] }