{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8ddff605-eb86-5ac2-9d35-a3e51ee6363e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-jms", "version": "4.0.0.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:88f5d455-b7e4-5a45-9951-231da5bad5a1", "id": "CVE-2014-0054", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0054 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f63039a3-caa5-59a9-8dfb-321cd95706eb", "id": "CVE-2014-0225", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0225 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d85fba63-d1ec-5435-bb1a-e75b9e42875f", "id": "CVE-2014-1904", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-1904 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:97bc586e-6d0a-510e-a1d5-32d834504e4f", "id": "CVE-2014-3578", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3578 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bf38f180-35b4-53bc-94c7-68e7dfd58102", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f8de09d2-242c-54b8-b4d3-263bd4f2eef4", "id": "CVE-2015-3192", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-3192 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2efd97c2-b4a4-5895-bbfe-f7bdb19285db", "id": "CVE-2015-5211", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-5211 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f593f83a-a2c5-5f54-b888-2125db2b4b43", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1633b595-83ee-583f-93d7-8ac7d5f77a36", "id": "CVE-2016-5007", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-5007 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:35220a4c-4dc4-5633-ab75-a59935a13f3b", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3669c2db-5f0a-53c4-9795-70cee48a3216", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bf094281-8e71-5f2f-9a3b-307edb48bdc2", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8b77ae32-728a-5a19-85f2-baa13e3f7a19", "id": "CVE-2018-1257", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1257 is a false positive for org.springframework:spring-jms 4.0.0.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:495157f4-f5bd-57c9-855e-a66e9024c64f", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:33cbb81d-dd6a-59df-98e4-42006421e3a8", "id": "CVE-2018-1271", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1271 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0e71d325-e632-588a-a694-8cfbb279ada7", "id": "CVE-2018-1272", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1272 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:12593835-680c-5085-b5a6-afc0aa4034b1", "id": "CVE-2018-1275", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1275 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2fefb8ff-3a90-5165-826a-cc2930b85a68", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3de4d11d-dda4-5600-a1a8-a86fa9bce440", "id": "CVE-2021-22060", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22060 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d179c43b-5e39-563b-afc3-b880a7f2cbe6", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c86dad4e-1e67-55ab-8303-767699895e8c", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:03df627d-897b-5131-92fb-b7d7ec57e07f", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:edb6ed84-7f87-5d61-acfb-9dffc1f6df22", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:94c7089c-6092-5981-aa07-e0376c8e4e67", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:538ed148-9298-5afc-b053-072d52e6761d", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bff6cabb-8ddd-5812-8709-d16c832e7d69", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:268a6827-75b1-500a-ae0d-82de356c0ebb", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d6ef0aad-0ebb-5e1b-b7b6-0c960b492500", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c9f6b000-c8c2-550f-a350-690b8e79fc05", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:415a9e74-b222-570f-a85c-6c74f4d0630b", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:06435c26-c23d-5ec3-81fd-e289c5c49a4a", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:890f9876-1a05-5431-b35a-1a06eb76185d", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3e8a02ac-6787-5b57-b556-1039c40ac703", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5483a37f-576b-5cf0-aa19-19f73843a335", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5c31e1eb-c91e-5484-92c2-13fae9e9a79e", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cb81dbab-fc8d-583d-ba66-f7682130baef", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fd81e348-27f3-5ccb-bfa4-1070d215b7d8", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ca971525-8c3d-51c7-b59c-1c8d4d0bae68", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4143ced5-3008-500c-812e-77485a5c7d8c", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3c0e4e86-38f2-56b7-8ae3-e88eb4a65e24", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:00dea8ba-d226-56ef-91b9-cd09360cfa9e", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.3" } ] }