{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9723d90e-c706-5be5-9dd2-7559d0be5248", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1", "type": "library", "group": "org.springframework.security", "name": "spring-security-acl", "version": "5.8.15.tuxcare.1", "purl": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:70152c97-fc45-55b2-81a2-c0d1b4e99d38", "id": "CVE-2007-1651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1651 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c222e323-857f-5cb6-bb67-0d6322de655a", "id": "CVE-2007-1652", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1652 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b86ee2d0-7e59-5518-8ea1-5317b6d91be6", "id": "CVE-2020-5408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5408 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aab4c886-24c0-52dd-b880-fc40852c29d0", "id": "CVE-2023-34042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34042 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4d7b98ca-62c6-5b31-a91e-a2209b5b6214", "id": "CVE-2024-38827", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38827 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:16f0932a-dee6-59ea-9d06-82b150680095", "id": "CVE-2025-22228", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22228 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d869f74d-3431-5cf1-b4a5-4052612c45e5", "id": "CVE-2025-41248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41248 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c20d3367-202a-5def-a27d-8d001ec215d6", "id": "CVE-2026-22732", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22732 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:56837e18-4b17-5dc7-aa52-c9aeae4ac640", "id": "CVE-2026-22746", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22746 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:30a6314a-f176-5a03-a761-4d1a0833e7d6", "id": "CVE-2026-22747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22747 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f84f440e-5281-53f7-b2ac-c2ba2b12805d", "id": "CVE-2026-22748", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22748 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3c1f3cff-d559-504e-875c-97b6c9ac7706", "id": "CVE-2026-22753", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22753 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3359778b-d442-5cf9-be09-cafb83936c07", "id": "CVE-2026-22754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22754 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-acl." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.security/spring-security-acl@5.8.15.tuxcare.1" } ] }