{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3e4be604-1ec7-57ed-b2d0-9cde02865d82", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-tx", "version": "4.0.0.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7b5ebdc1-9e6d-57ed-9613-c418196c4142", "id": "CVE-2014-0054", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0054 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2763b5e4-97af-5c10-b500-ae0773974acf", "id": "CVE-2014-0225", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0225 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:43b0e568-6817-5470-8b4c-dc28c0bbf524", "id": "CVE-2014-1904", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-1904 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f207b75b-8905-516b-8552-d48d7fa51752", "id": "CVE-2014-3578", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3578 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f5399bf2-10cb-52bc-ba96-322bc2330be4", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0318e7d0-cb0f-5ae7-a2bc-db2e7cdfff36", "id": "CVE-2015-3192", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-3192 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f91a5f53-9179-5105-a72c-501d0e437213", "id": "CVE-2015-5211", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-5211 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d47e20ca-8ee0-50f4-a9dd-4d99cf77e10a", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9518c2ec-0efb-50ed-81b8-cf5ce6f5adc9", "id": "CVE-2016-5007", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-5007 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5fc07bc2-0b72-5749-a6c9-d1e1b9dc3815", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:46647376-d7d6-52d1-a02e-8946e88f24ea", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:17c8085a-99d4-5512-8948-5121d648bef9", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:feeca9b9-55b6-5a73-bf40-7fba06181ed9", "id": "CVE-2018-1257", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1257 is a false positive for org.springframework:spring-tx 4.0.0.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:719e3adc-7929-51a3-91e2-35b3f916feb0", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1f93b1d9-cf7b-593d-b23f-a79659eba500", "id": "CVE-2018-1271", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1271 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e51cdce9-95ac-55fa-b998-7a448230cfcb", "id": "CVE-2018-1272", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1272 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:78100b53-d5f9-580e-83a6-156b920a8990", "id": "CVE-2018-1275", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1275 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:df0b4c70-4b1e-5f3c-b3c6-8bc8881df766", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3b72a0c0-879d-57a3-a942-f17afe94b7b3", "id": "CVE-2021-22060", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22060 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8ee83fc5-5930-54fb-8ce9-ede6cac8fd0e", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3370d8be-3733-5d58-b24c-5004e2b90a35", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:68d3e7cc-a41f-57ec-9bba-228a040c9653", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:19f9c54b-8e75-5328-8bcd-92145a9bc270", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b5bf3d9d-01a8-5129-9b31-72cb990649d2", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7b4f402a-d7a1-51b2-b6e4-2e6ba192ca33", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ee0fc5a7-0cbc-54a0-9724-7e84d8cb419b", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b77d4305-b001-5ae3-8746-b016db4bdea5", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:581c33fb-6812-5710-be85-294ad37d8e62", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:44bef202-cc6a-5590-a6e9-b6e683a600c1", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:29fde21f-baf1-5abf-943a-5492dfbc0537", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e316dd1f-1253-55ad-88ac-d284d828c242", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4afbdda8-4747-54a0-aa60-f2b3702cb174", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3ec64833-0218-542f-911c-b5e255a03a89", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d204c5c6-185e-52f2-97e0-2ed56404baa0", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:945339a8-fefb-5166-bc9b-34df21963a33", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d0e2231b-4348-548b-9cd9-d044367b1d7f", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fd744077-503d-5ae6-bb78-eac6e8b34a73", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6377eb85-9509-5fd0-a9fb-78986a523be2", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8229e73a-859f-519e-a28e-29dc82e679ac", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:655c849a-ee38-5ac2-aa1f-203bff4d76b7", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:db024ad0-edbf-52ec-a2d9-df73d917229b", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.0.0.RELEASE-tuxcare.3" } ] }