{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:cbfcd443-8952-53dc-a069-6384127994f3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-messaging", "version": "5.3.25-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d595ec0b-52ba-53fe-843f-d119f04067af", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.25-tuxcare.1 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:44f242d0-e530-57e4-9de5-5f729aa64ea1", "id": "CVE-2023-20860", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20860 affects version 5.3.25-tuxcare.1 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1cd4e956-4a52-5347-8603-2e297588a3f9", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.3.25-tuxcare.1 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bfe0939c-0529-586c-a51b-fdff39b8c1b2", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c582a1b8-169c-5594-b5c3-a3508fffbcd1", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 5.3.25-tuxcare.1 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c1cb7399-17c6-5435-b4f7-cdfc22164377", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 5.3.25-tuxcare.1 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:622278f9-a64d-53bd-89e5-65667c0dad4c", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.3.25-tuxcare.1 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d95534b8-b073-5ab1-a656-490b664536b8", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.3.25-tuxcare.1 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b000124e-1f93-5dc2-be74-e8aa8b8bb38f", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 5.3.25-tuxcare.1 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:443878f6-2e6e-573b-aff5-168f067a11a0", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 5.3.25-tuxcare.1 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4c2c4dd3-7adb-5c7d-b30d-81f31d2efc21", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.25-tuxcare.1 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:985c9796-3ae0-5413-9220-a760d58a6f8d", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f0d03fc4-bed8-5c9e-9e47-da70bd045cac", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:11ab9951-f2b3-5ab7-8df5-dd54d8536be0", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.3.25-tuxcare.1 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d6e5b0e8-2a0d-5f20-a1ae-c4be3cf4e402", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 5.3.25-tuxcare.1 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6d7d2034-0704-5a18-a251-8fb9d3b8a518", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f0d98904-9bd7-5bec-b38d-ba94f34ac22a", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7dc06dee-b44d-5866-8840-60f641e4be12", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.25-tuxcare.1 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9f9d3258-0578-5517-831a-cf3a89c172cb", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.25-tuxcare.1 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a1480a7f-88e9-5fdb-bacf-0bef074ff40e", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.3.25-tuxcare.1 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:91af922c-1b49-5515-a5e7-2163846f12d6", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.25-tuxcare.1 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ac8a3f1d-18b0-50aa-812a-fc83a2365073", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.25-tuxcare.1 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.25-tuxcare.1" } ] }