{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c185cc87-5275-5344-b78e-8f8ec242dea1", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-orm", "version": "6.0.16-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e2a891fa-fa42-5fa7-a67d-1257e2fe9bec", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:66c6c058-1588-5180-8dc1-c4a486a84034", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cceb89d8-7239-5298-b5f2-5b90c6b5b4f9", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9f950931-00d1-5ee0-bf7b-9ada3cdf7771", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0c184726-3b78-5fe6-b4f9-5dd2c75c9c3c", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5cba637d-1314-5d70-831b-9942f3eafea9", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:782eac71-018f-5b41-b02a-33e433232aa0", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a40bd7e8-ef12-5126-ac51-13c2e90ff694", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2f8b21d2-0bc5-5150-8f26-56863fa82a35", "id": "CVE-2025-41234", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c3743b31-6e6f-53ea-ab31-0bfff3ce13a1", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8d60be59-d258-5b1e-8041-c7480ac90a70", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1d90dd96-f1f6-5177-8b66-f072471104e3", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:64bc0c57-22f9-5798-9c9f-33e736f63a2d", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 6.0.16-tuxcare.2 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:27a74c82-cd6a-5c54-b19e-c960d440d6a1", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 6.0.16-tuxcare.2 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3e380962-7e1b-52d4-acbf-2c5415c23acc", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 6.0.16-tuxcare.2 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:40c0235e-9b7b-542d-909d-303ab0633c0c", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 6.0.16-tuxcare.2 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d2aaf90d-0765-5ea0-af43-0893c481bc60", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 6.0.16-tuxcare.2 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.2" } ] }