{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:25b3d7f2-cd9c-566b-81e5-497549f3e154", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-r2dbc", "version": "5.3.25-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:65e3a508-4a7e-5c39-89c3-7d3e0294bba1", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:310dc336-9b3e-5f6c-8a13-2b442f630d22", "id": "CVE-2023-20860", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20860 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1308d894-8452-5774-883c-310e81a59253", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2699c5a2-52b5-55be-ab80-d044035313a0", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e09107f4-4b26-5b62-88c4-aa26c06825cb", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f8699a2-7fee-50ab-96d8-d7843326bf6a", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e6192af2-b07c-51a5-9b25-597efca92e3b", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1e2b8050-ba3a-5b5d-bc44-150440c92022", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5e9b2198-921f-59da-8406-c8e000cd9b5a", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:74a99af4-f28f-583c-8b53-9acd0bd538a6", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bf68002b-d16f-5d2a-9a78-7652e2926ed8", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bd6eff5d-6167-5b56-8fe1-8e5ba26a205d", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:29cb3984-c253-5bd6-8cb2-714de239372b", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:40f2f322-4c57-5446-8f7a-f6b12ff3803e", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:60d23997-c823-5dbb-af99-a2fc521f60a2", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7a592ac3-72a0-5cd8-ac0c-e23eb597ad15", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bc3c01f2-4edb-5ceb-ac0f-7241a053325b", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:05f2bd5d-eb17-5940-843b-c8ac89c83927", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dddc71ee-150a-5c84-bf18-e7d385511b97", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:92a06a39-0d3c-5f32-862a-bfc31c337e72", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:deb8235a-6e70-5a1d-bfbb-cf8c50ac5964", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9333768e-8d3f-58dd-9f2c-23ce3ffb5611", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }