{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e742128a-732d-546b-8c2f-38946828acb1", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.hibernate/hibernate-validator-osgi@5.4.3.Final-tuxcare.3", "type": "library", "group": "org.hibernate", "name": "hibernate-validator-osgi", "version": "5.4.3.Final-tuxcare.3", "purl": "pkg:maven/org.hibernate/hibernate-validator-osgi@5.4.3.Final-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:34a28478-fd4e-5216-a659-ae2de34e734c", "id": "CVE-2019-10219", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10219 is fixed in version 5.4.3.Final-tuxcare.3 of org.hibernate:hibernate-validator-osgi." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi@5.4.3.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:803f1dca-9b56-5c37-b28a-0d5504581073", "id": "CVE-2019-14900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-14900 affects version 5.4.3.Final-tuxcare.3 of org.hibernate:hibernate-validator-osgi." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi@5.4.3.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:90280c15-7c42-57e7-befd-84a22ba9818a", "id": "CVE-2020-10693", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-10693 is fixed in version 5.4.3.Final-tuxcare.3 of org.hibernate:hibernate-validator-osgi." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi@5.4.3.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:192c51e7-e5d4-525b-9800-9fc0bb78ceec", "id": "CVE-2020-25638", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25638 is a false positive for org.hibernate:hibernate-validator-osgi 5.4.3.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi@5.4.3.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:79c76069-bbb8-51df-9659-980d39387483", "id": "CVE-2021-3765", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-3765 is a false positive for org.hibernate:hibernate-validator-osgi 5.4.3.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi@5.4.3.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d17d2dc6-3146-50a1-95aa-c994156db0a2", "id": "CVE-2025-12758", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-12758 is a false positive for org.hibernate:hibernate-validator-osgi 5.4.3.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi@5.4.3.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3b7f7228-9684-5120-ba10-0a14d5ae8897", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.hibernate:hibernate-validator-osgi 5.4.3.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi@5.4.3.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9b4fb2d7-0683-52d0-ad59-cd2ac7fd84d4", "id": "CVE-2025-35036", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-35036 is fixed in version 5.4.3.Final-tuxcare.3 of org.hibernate:hibernate-validator-osgi." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi@5.4.3.Final-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi@5.4.3.Final-tuxcare.3" } ] }