{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b205e6c4-b777-517b-812d-ccb0b73d7e06", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-jms", "version": "5.3.25-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2064dcd3-44fd-5bd4-b479-4a8e9d3ceb83", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8a24662a-53a5-5d98-8b90-8dc35785c612", "id": "CVE-2023-20860", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20860 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:282007b6-1694-53e2-9b67-9ada6d3dc95a", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b91d6f2c-40d0-5e73-83c2-4ce06760aa62", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7f981eb8-b87e-5861-a9e1-da357c782ae8", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3621fe2d-ffa1-5117-803e-7560cde10417", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eb1a3bda-d58a-539e-ba1c-a779473f966e", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4e3a267f-0d5c-59a2-9373-ec263d06e09b", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dab3705e-5da1-5632-8ef0-ff1a2364c9bb", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:69ceddf0-db2e-544d-9ed1-e330f323bdf8", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0cea2850-9aa7-55f4-987d-2fa13e21ff82", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d666cce5-9e01-57cd-a228-acb3d24fe42e", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f8cd3788-e663-5a6a-a26b-68054b96269f", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a6ca8e14-2b36-557d-a37a-3dc5eacceef0", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2f1a0e84-b8c8-51ae-8b4f-10b96a06e284", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:034533a0-a57a-500b-85d0-9829ee3c9e7f", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:980fc733-5798-5b64-aa04-28dafc77fadc", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2c4d5f76-e69e-5ac4-b032-7de7a40546c7", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:23355a42-9918-5d9f-b297-3826df045b66", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2fede23-ac7d-599c-ad3f-353e44d8130a", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6c160c23-a85a-5cb6-9cf5-a6ef24130ad4", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62e64ee1-02a6-5308-a857-e0fbd63b1cd2", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.25-tuxcare.1" } ] }