{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a74497d4-8545-550c-a3b2-e44bd8a48ba8", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-jcl", "version": "5.3.25-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:81cc7057-3cdf-5ec8-95a8-c80ec46275a4", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.25-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cfd532f1-8540-5276-ad8a-3939780a87b2", "id": "CVE-2023-20860", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20860 affects version 5.3.25-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c5791525-00bf-54c9-968c-c70c38f029db", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.3.25-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a7ad4b81-a18d-57ea-bd07-00a9f4942f07", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:110ece67-d059-5b16-9e6c-e187ba0f365d", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d1127cb8-057f-5703-82e5-5c10a1b0be42", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eadedb13-08c7-577a-b391-508f399c825c", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cdadb4c9-700c-500f-9431-cace529231b1", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.3.25-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d32e31f6-cde1-5edd-b61e-aa84589e7ee9", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cdba82c9-e892-5ff8-a4ae-1a2472c9ce94", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4c2e7e4d-fb62-5386-b2df-56d56ce1c8e4", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.25-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e08e3338-c30f-5717-8d10-f238deec796b", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3fa8fb06-9eb5-58bb-9df1-f52158e62621", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d29c14dd-cb10-5f70-bb54-6b8994ef7f62", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a1dac634-b501-5879-9708-c5137cfac85b", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b0366802-aee1-50ab-a195-7c8152998b16", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:00c7c20d-3bed-50de-8d17-c90f974fc65b", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8face981-0eae-52c1-bcd8-cbd4a4d9648e", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.25-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a2bdf5ba-9b9f-5dce-8dc6-7cbec2a55425", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.25-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6a2fbb53-4870-5085-9462-c1df8755f688", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.3.25-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8991253f-324f-5f06-a389-0d0f1e10471d", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.25-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8dc3374d-9070-5633-9702-bfbec5a30cbd", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.25-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.25-tuxcare.2" } ] }