{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c5a158f1-18fb-522a-876c-5d578b69d014", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-websocket", "version": "5.3.24-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:97c72318-317c-5e96-8c40-fc39c2d835dd", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:23f5ee1d-013d-5300-98c5-c5a8d62d8d0b", "id": "CVE-2023-20860", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20860 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:49197f16-5159-51ce-8840-5c0e5275f39b", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a3dd5d69-b9f3-55d6-9e54-32e3d2246dc5", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:33e4015f-c3cf-559b-b545-bdb29d4d1657", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d97de41a-9fc7-537c-9e9c-89703bbd6e81", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0e78511e-25e5-5e86-9e71-a4b75a6163f6", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7d72762f-86b5-5414-a24f-94df22825345", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7cf436b5-2c68-5934-a189-b33f22143b22", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:361717ba-e0f8-5ffd-851e-80bc956c20c0", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:61150823-2dd5-522b-a15c-21d4c3c481d6", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:63743597-92a0-5cfc-8f37-4e657b431484", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f1bb06f8-16c4-5366-b4ff-a4464f206410", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d93c452c-ac95-58c8-b607-22c01a8f6f7a", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:373e37b4-4295-581d-b5f5-074aaee93e1c", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c23e3ff1-81c7-5ba0-932f-f793bd310064", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:14282b17-2a28-5a3d-b1ab-a5c4de8e4eb1", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6aed6dc0-7712-5a19-894c-ed27ff2739d4", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e4076677-3add-549c-b88a-50037d3bb1b4", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f7de5dc3-73aa-5d1c-855c-986a8c586f2a", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6db89231-ad56-5114-99f0-510864e01f3c", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6cb132f0-444b-52cf-8c44-d51d5be497f7", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ee21031a-a363-5d6e-ad68-e1ce57a7d841", "id": "CVE-2026-41838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41838 affects version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e4911384-bf7a-579f-adf3-e7e2822ed6f7", "id": "CVE-2026-41839", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41839 affects version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8112cef3-6fe0-50c3-961d-6847be700652", "id": "CVE-2026-41840", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41840 affects version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2d5d4cca-efe0-5933-b4ef-71b7d4f88b5e", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:244f4df8-370c-59fc-b150-634a5bd30c89", "id": "CVE-2026-41842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41842 affects version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b5425de0-0cca-5360-8b76-9ec5b5639a66", "id": "CVE-2026-41843", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41843 affects version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4536785a-c1f5-5a9f-9b30-22a8ef8f00fb", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a0530304-1f1a-54af-91c5-5b5997f805d2", "id": "CVE-2026-41845", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41845 affects version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c6a0c448-e33c-5b92-957a-19f9b551de93", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bd3d6589-65c5-539f-aff4-dffa1913c5ec", "id": "CVE-2026-41847", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41847 affects version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:78f83a94-2e99-5355-b07b-63afcb482876", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:589697ec-b2da-5ef8-81c5-f93b67355a79", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b6563127-c676-5650-a04d-bc759faa453c", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0ef2ba18-4493-5b5c-bc9b-8d50b1c84cc4", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:725edfb2-a58f-5388-8056-9082d921fd0a", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:35be5762-6fc9-531c-a1e7-c392ea51eed9", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1ffd3fe0-0f66-56a5-862e-2a762cc02c6a", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 5.3.24-tuxcare.2 of org.springframework:spring-websocket." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-websocket@5.3.24-tuxcare.2" } ] }