{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:cd96d731-e8a5-5092-a918-73371b7f908e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-jcl", "version": "5.3.25-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5a20c2e0-c58a-5e9a-b43f-2aeb82aa8287", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9d8595a6-7ed9-55ce-8296-034976044565", "id": "CVE-2023-20860", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20860 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dfbf5857-f088-571d-b58f-22542f1389f0", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c7cffd42-2af7-59c5-a282-751ce229480c", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:136cef99-b6d3-54bb-9c0c-361610ee19d4", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:74914cfc-a072-5962-9b3d-e844f37c24a2", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b2dbab4d-8d5c-5850-a85a-587a8ca77214", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2f773d95-8532-5ed9-b81a-3d767f75ef72", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:82adca8e-f5c3-5c49-849a-b79ce017a528", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d3d8e3ff-5f2f-51d0-b204-af9b445f6369", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2e0f9433-d055-582f-9ef4-9b772ddcecdc", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:54813ef1-1a25-5cd2-b986-07284ebe28fc", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:344c75a2-520a-51ea-bd13-2443bcae6bd9", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f5348c50-395e-5053-8aae-716e895203a4", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:97f107ae-5ef2-524f-bfba-f9a2c1d2e7e9", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d4908fa6-f831-5fff-acfd-47fc7a544be4", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:470bd32b-15aa-5aae-b88f-c65f844db809", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:99c442fb-0371-5b52-b39b-68e93735fb11", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fea0ba96-08c4-51d8-b44c-8d30c33dc8f8", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3e4ec6ac-eb96-555f-b2c5-522346a56010", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4ca0f892-e30d-5410-9fd8-c18fc5ebf7e4", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3936421c-9d18-5b12-a246-369217b0fe6a", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.1" } ] }