{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1f79a66b-a248-52bc-a116-a8099b2588f7", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-jcl", "version": "5.3.24-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:efc93d6a-a274-59e8-8e6e-5090a713467d", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.24-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0c0fe315-72a3-5517-ab7a-2f42a0729acb", "id": "CVE-2023-20860", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20860 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e1abce29-b8ee-50b9-944c-39544e851968", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a7fea319-68bf-5a30-a69f-d6fcff248e87", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 5.3.24-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ac13faf2-8a71-584d-9860-2dc97ec33761", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c15fb881-2ea4-5231-874b-020d87be4301", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f037cd66-37b4-5bc0-8f7c-cc3685a5809e", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3e3cf92e-55b2-5dbb-acea-a26a32e4d113", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5b37ab91-5b10-528a-b6d6-216c8272860d", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:681b9388-3e31-566a-8495-5f2f44d96050", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0de7f202-08db-5c72-a3fa-ffabb87b987d", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c3143e1d-35e4-5f41-92dd-dec676186ab6", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:70b1e195-01eb-550d-89ea-f058413f2413", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3122dede-881b-5acf-89f8-d098a96df1c7", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5ad71651-cfe9-588b-addb-7fc658595b25", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:12b887c3-0a0c-5d41-8d60-32869612688e", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ed1dd7e5-3b38-5a16-a7ce-f554f7976218", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7cc32a31-4825-543a-8d23-54c1dfb33c08", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.24-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:389f5862-d10d-5590-b053-5103711f282a", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.24-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b81fd33b-ff80-50e3-8599-8f8bfdb1783d", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.3.24-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7a561fe2-fc12-51bc-a036-5c2625bedf39", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.24-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7720335f-a041-5e85-9520-32a0cbe17e5a", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.24-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.24-tuxcare.2" } ] }