{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6449719f-b7df-5645-bae0-b94023c70893", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1", "type": "library", "group": "org.springframework.security", "name": "spring-security-cas", "version": "5.8.15.tuxcare.1", "purl": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f5ec3228-1fcc-59de-9c8b-a4150f33070d", "id": "CVE-2007-1651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1651 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5044f70f-cbc8-5bdf-8551-315201ee9ded", "id": "CVE-2007-1652", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1652 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f3aad42-7261-5daf-ba27-3459f437f62e", "id": "CVE-2020-5408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5408 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ceb24541-0a04-52cd-9310-92fc06e34ab1", "id": "CVE-2023-34042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34042 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c46fc605-d326-5623-9ba4-cd9256cbf409", "id": "CVE-2024-38827", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38827 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9888d904-a922-5a65-b571-34191df8b3e0", "id": "CVE-2025-22228", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22228 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0a617192-f1bb-5aa2-8ca1-a144af2cff3b", "id": "CVE-2025-41248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41248 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:654736ac-3312-538d-84a9-71fc705ec426", "id": "CVE-2026-22732", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22732 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9cc273f0-4d0e-5965-bae9-17cfa02b982a", "id": "CVE-2026-22746", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22746 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9145f227-1b48-55f2-851e-df9b2738bc20", "id": "CVE-2026-22747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22747 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4044e4bc-999f-589f-9573-891cab8b0a06", "id": "CVE-2026-22748", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22748 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:229b5c4e-dd4e-501f-9fe4-e877f3cfb6d9", "id": "CVE-2026-22753", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22753 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d638cbf0-621b-519b-8acb-1eb1cac8c842", "id": "CVE-2026-22754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22754 affects version 5.8.15.tuxcare.1 of org.springframework.security:spring-security-cas." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.security/spring-security-cas@5.8.15.tuxcare.1" } ] }