{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e172399a-37ad-5838-b6db-b5e53c56b078", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jcl@6.0.23-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-jcl", "version": "6.0.23-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-jcl@6.0.23-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:433239cf-1788-518f-a81f-71b6b4b0cf5e", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 6.0.23-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3822efd8-1388-5d8f-9972-0b750e92768b", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b3cfe052-c294-5cde-9820-f888b769f6b9", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3c24417c-192c-532e-ae68-ae52f0148c50", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4c171676-d77e-5f20-998c-ca58d00d7e02", "id": "CVE-2025-41234", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:24ef92c5-afe2-5ad2-9e16-4d89440d9401", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 6.0.23-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:51cfc8da-7708-5ba9-a454-916de2d73fb5", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 6.0.23-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:46d3faf3-ab04-5715-a7ad-423a52cf2383", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 6.0.23-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d392ff49-a67d-5b09-aaea-2889c7a1a60b", "id": "CVE-2026-22735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22735 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:47518373-d5c7-51ad-858f-df1b87e851cd", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 6.0.23-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4fe7c9ef-a341-5b31-b72d-3f963fba0cc3", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c566884c-9ceb-5c82-9b6e-d4b37783f2fd", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 6.0.23-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7b65bf18-98c6-5e64-82b5-4aa37dc6c27e", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 6.0.23-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@6.0.23-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jcl@6.0.23-tuxcare.2" } ] }