{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:11e1b480-4427-5ebe-bb53-0636aceeda4a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-r2dbc", "version": "5.3.25-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5beff804-292c-5082-9801-1be17c6e2767", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:36a7a6b0-3e88-5fa5-8162-a6cb6e4952ad", "id": "CVE-2023-20860", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20860 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e47873d5-6936-5348-8e7d-799b5012b672", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:69aa2f45-4593-5c24-9db9-138521735ad9", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b3200f5f-af12-5e0a-84bc-2d486a5153bb", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4750c8a9-f3ae-504a-a90a-299033256a59", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:be47148f-321e-55d0-b2c8-8da78ab648fd", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6e5a07a5-d77a-5332-810c-8276bc14ac70", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3cb27812-a386-50dd-a87a-bfb89d0c2153", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:82175db6-9c21-5bf7-9e61-50f7e42e0102", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8594c64a-1244-5a81-97cd-21383649b1cb", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:231d0643-aeee-5182-b747-53fa71f25ebf", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:193f380f-47dc-59be-b5d2-a81900689435", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fcffc294-1594-5eba-a0cb-4430076a4383", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:266a55e9-2411-5c67-a62c-01966d7ab968", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5345dd89-315e-57b8-aab5-e82656b3405a", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:880d11ad-5711-5e1b-b309-e9d9ad21f86e", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:986f54e5-7934-505b-a289-360744b46fab", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d6127c00-befa-5165-8288-2733a58dad7a", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:79d27312-873d-5836-b998-f805c5245596", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:72962627-7680-5524-8789-7ef05bbb3963", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5cfd5402-e594-57fa-91d7-16002b7b3455", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:325eefd2-4a7f-5c2a-8fda-dfe0d71863c9", "id": "CVE-2026-41838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41838 affects version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:478b8bf3-6204-56c4-980c-002401420ed6", "id": "CVE-2026-41839", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41839 affects version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e81440c2-a124-5430-bb23-7ef8db20753a", "id": "CVE-2026-41840", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41840 affects version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:28e8b83b-c660-5467-aa2f-d024bffbebb2", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:69bc599e-f1a8-537a-89e9-82e13b212319", "id": "CVE-2026-41842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41842 affects version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ed902f69-60c7-594c-a20a-f667887ed7c0", "id": "CVE-2026-41843", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41843 affects version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2e101ac2-8aaa-50fd-9627-a60c94df0da1", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:666f1ff2-e221-5d9d-b179-0a9f46200686", "id": "CVE-2026-41845", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41845 affects version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1a6ac54c-bb66-5d76-8645-53ce4922653b", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:75c0f6ad-d198-5041-9f09-c55f7a92c733", "id": "CVE-2026-41847", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41847 affects version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3e4e1a6b-8184-54f9-b581-944f16a338a3", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:11bde737-5dae-5d7e-b48d-a46e89774593", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1d65c9f7-912f-5c75-8013-ab5ad68f1623", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3b29ac66-6130-53e8-91da-316971ea9be7", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:03cdbeb7-0cd1-5435-b187-e7399233e143", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bb0cb4b7-85db-57d7-8820-642f22d80c85", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8a20140a-3475-5daa-9ea5-573f5c5cca16", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 5.3.25-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.3" } ] }