{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3bf5a06c-3ba5-594c-b574-8f3dfb60610e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.hibernate/hibernate-validator-osgi-karaf-features@5.4.3.Final-tuxcare.3", "type": "library", "group": "org.hibernate", "name": "hibernate-validator-osgi-karaf-features", "version": "5.4.3.Final-tuxcare.3", "purl": "pkg:maven/org.hibernate/hibernate-validator-osgi-karaf-features@5.4.3.Final-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a020f37a-a8f1-599f-a504-adf0e6503d46", "id": "CVE-2019-10219", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10219 is fixed in version 5.4.3.Final-tuxcare.3 of org.hibernate:hibernate-validator-osgi-karaf-features." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi-karaf-features@5.4.3.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c526d171-9f3a-5fce-bfce-533a1353028e", "id": "CVE-2019-14900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-14900 affects version 5.4.3.Final-tuxcare.3 of org.hibernate:hibernate-validator-osgi-karaf-features." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi-karaf-features@5.4.3.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ac51ab5b-82a1-590f-885a-0c501e79e707", "id": "CVE-2020-10693", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-10693 is fixed in version 5.4.3.Final-tuxcare.3 of org.hibernate:hibernate-validator-osgi-karaf-features." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi-karaf-features@5.4.3.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5c877ea8-c632-5492-87da-5b425522cd9d", "id": "CVE-2020-25638", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25638 is a false positive for org.hibernate:hibernate-validator-osgi-karaf-features 5.4.3.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi-karaf-features@5.4.3.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4d77e36e-1982-5cf5-ae1f-22ae02e0ad9e", "id": "CVE-2021-3765", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-3765 is a false positive for org.hibernate:hibernate-validator-osgi-karaf-features 5.4.3.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi-karaf-features@5.4.3.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:174f87e7-23a6-59b2-9386-a3abac1f4be9", "id": "CVE-2025-12758", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-12758 is a false positive for org.hibernate:hibernate-validator-osgi-karaf-features 5.4.3.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi-karaf-features@5.4.3.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ca54a204-397f-5656-a0b7-56867bf828a9", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.hibernate:hibernate-validator-osgi-karaf-features 5.4.3.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi-karaf-features@5.4.3.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c10151ac-ca13-5535-a04d-05b516ed63d6", "id": "CVE-2025-35036", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-35036 is fixed in version 5.4.3.Final-tuxcare.3 of org.hibernate:hibernate-validator-osgi-karaf-features." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi-karaf-features@5.4.3.Final-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi-karaf-features@5.4.3.Final-tuxcare.3" } ] }