{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:fb00b657-89fc-5e46-9583-c4f622e9e179", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-oxm", "version": "5.3.24-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:81cfafa6-d7b0-56f7-ab96-60afffa3d30c", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.24-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:29591427-55eb-553f-b667-e31a335cd276", "id": "CVE-2023-20860", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20860 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d50b4833-6969-526a-87d8-a23c339da307", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:544dc337-e7b7-517f-a421-04f580527993", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 5.3.24-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7763d871-f087-5887-8438-613cc81bd88c", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1b0414df-3e0b-5df2-8086-1b45c5730226", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:07bb4a2b-0d6e-54c7-ada0-ed5ecaf6b4e4", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8d4d886c-c46d-57fd-869a-ed007279e31c", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8d5f9d69-6120-5ff2-a76f-cbfa0d1641f4", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7221634c-1df3-5181-aa63-9569d502f91c", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fcd58a97-9a8a-5903-ae4b-fdcbf0c54e58", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fef15aa4-9a31-5f3c-a830-e9762a65e3ee", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:628544d1-e79b-51e9-bf7b-ddd41b2ec908", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:707f56e7-4993-59c6-8dcb-7e3cea7b018b", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f49d6201-981e-50e0-bd09-b112c8631314", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f74e0a61-7f52-56cc-877e-3c4a27739e12", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6b9f4393-e04a-5ee9-bf29-b8de34e97993", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:99c4bae5-88e7-54f0-84fb-5625375c892f", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.24-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6c9a782f-c9bd-5306-b4b0-f6522f9adcaf", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.24-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0928ab76-376b-5840-9037-a4c57d2167d8", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.3.24-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4844b068-f698-5e4e-a448-9074d23f6d94", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.24-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7ba24da1-c675-5c3c-9a00-3ae4b726fe69", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.24-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-oxm@5.3.24-tuxcare.2" } ] }