{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d3b4c396-c7db-5c0d-8fa0-2060288ea1a2", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-messaging@6.1.21-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-messaging", "version": "6.1.21-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-messaging@6.1.21-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a82146fc-d166-5cb3-a8c4-8eeab3315dc5", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 6.1.21-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@6.1.21-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:18eb4f2d-159b-5d47-8c68-771499a7c1c5", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 6.1.21-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@6.1.21-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5ec9278b-1e14-5291-9cb6-8cd766ca0d5d", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 6.1.21-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@6.1.21-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:57481a63-edbd-5ed2-a245-267f255e7436", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 6.1.21-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@6.1.21-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b60aec29-997e-55a1-8dc3-700e12f44220", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 6.1.21-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@6.1.21-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a905898f-d008-5b5f-8353-d965c486d1b1", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 6.1.21-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@6.1.21-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cc73fd91-906f-5291-a853-a60cdf536e17", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 6.1.21-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@6.1.21-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e077c073-3819-5e32-a63c-73e6fcfc7ac9", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 6.1.21-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@6.1.21-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:30bff1cf-b907-5724-8310-72d65e05c8a4", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 6.1.21-tuxcare.3 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@6.1.21-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-messaging@6.1.21-tuxcare.3" } ] }