{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:395bb321-80f2-5cb1-a317-f566b235e688", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jdbc@6.0.16-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-jdbc", "version": "6.0.16-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-jdbc@6.0.16-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:716b66b2-5e12-5a69-8483-48def6847af8", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1c363555-d786-5474-9451-9785eb1b29ec", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:18a99278-17ba-5271-9bcb-703f0662d687", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0e65edbb-0d56-5984-b07f-819c72d3b340", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:08ea086f-3e0c-5958-ad67-b849ee49e112", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4a3fc7a3-8641-5731-bfcc-2d219bf42dcf", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:759aba77-3977-5519-a26c-8cb3b0d2b9d1", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f099172e-4c51-5729-8e22-fc1ef4389f7f", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:01ad545f-7047-55eb-b957-c851cf607d94", "id": "CVE-2025-41234", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d3f55a5a-2194-5007-89d0-e8246b6a743b", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d015a7f6-0572-5f64-8ce6-c7db5395a1e4", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8a12d03b-42de-59f7-bce0-1c52ebe22ab6", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cdae6806-c2aa-5516-a628-59700ef41fc2", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 6.0.16-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:53d1c018-3da9-5e8b-8518-889ba4fdddc0", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 6.0.16-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4b2a8698-4575-55d2-98fa-345fc47ec974", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:af14f1a5-b7c4-5223-9f92-d8ab25339b45", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 6.0.16-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e7c051aa-c3ec-5d26-ae57-7cfd38f7fab2", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 6.0.16-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.16-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.16-tuxcare.2" } ] }