{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9e3ddd10-8f88-526e-b62a-604b604d31df", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-jdbc", "version": "5.3.25-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ad7ca099-75bd-56fe-8d22-c4e21be79c69", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.25-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dd0b485a-1e8b-5b22-a69f-18fbb3a062e5", "id": "CVE-2023-20860", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20860 affects version 5.3.25-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cd0576f0-2de7-5988-9cd0-bd273da75394", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.3.25-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0be17bde-3bb0-536e-bb0c-97d790f00786", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ba7fd0c4-e810-52b8-a989-794d6abb1d75", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:53e9259f-818f-5b6a-b6bf-3d4a2cfdf509", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:90a862d8-2ddf-5e12-8ef6-b36bb84c1e60", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:22251241-4208-5feb-be67-99e3e92c4890", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.3.25-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:af0e621f-53ba-50a6-8b82-d5ca3c8385cb", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a47c2ad5-715a-5cc1-867b-c3239ab60e3b", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2dec9fac-0716-53de-a5b5-f0b11c38ee08", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.25-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1d8ecf38-9ed9-5865-8e25-218277365737", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d0fd7abd-c892-5184-9ea5-a9bb132b8f33", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9a902ba8-1ad4-536a-a915-300a61caf1e6", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b65b453-e1ee-5e41-bc3b-75646250206f", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:21ff55b8-05ff-50ce-83cb-617e267870f6", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0eb135a5-2f3f-5cf5-8916-b8ec05108df7", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.25-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2ffcf12b-8afe-5f96-b8a3-32d51877f11e", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.25-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cdb5fff1-117b-562f-98bc-e656a112adea", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.25-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9419afc5-c863-58f5-8b06-3554d5e00369", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.3.25-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e4fc08c7-5a92-52ab-8a0f-413d158bf266", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.25-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b08c32ad-a48c-52ee-859c-9ca602da56bf", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.25-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.2" } ] }