{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0c5cc823-24a4-51ec-a7d9-3f898fd0fba2", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-tx", "version": "4.1.7.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:41937c6c-7e49-57db-b788-51148156401d", "id": "CVE-2015-5211", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-5211 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:14419ac9-656e-5a8c-8710-740ff56b461f", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ad3797de-8f83-5b3b-bd28-8bb57dc4f071", "id": "CVE-2016-5007", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-5007 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:779267a4-497e-5a83-a46d-1dc73c4fc082", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b519f70d-9c57-5646-bcbe-f0890b964315", "id": "CVE-2018-11040", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11040 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a43f3b6b-a714-5e13-96a3-895800b18341", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:670a64aa-1b8b-57f5-b5a1-4838023c4e89", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7e6cb1e5-20ba-58cd-8c1c-88274bbd12de", "id": "CVE-2018-1271", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1271 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3c9ee638-e32d-5945-bd6c-a6771134473d", "id": "CVE-2018-1272", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1272 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6414901e-a170-52cf-bd83-6e0c811007c6", "id": "CVE-2018-1275", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1275 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dfb65d14-fac1-5f24-aef0-ab42f481c38d", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:eecb1a00-ec98-56dc-bb4c-f1e3d0c6b6b1", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ce806a04-bffe-535d-9343-db6ea7c63e66", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b6a8bb73-e60e-5462-93e7-796295701609", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:353b990a-7263-5b69-a2c6-8b34f4739090", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d77f9ac7-c490-5c01-9a00-ebc66a63096f", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:174b5b66-6f11-5805-a950-85357b5ece7c", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:745c2132-c848-55fe-8e3d-681c27a25d5a", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2671cfd7-2a7a-5fd1-94ca-56ad561afc3d", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:238bd27f-5e95-5355-99ea-940b7b6e6907", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:81677db5-f784-52de-83ee-39aee1d328a6", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:be867d4b-42df-5ed2-a13d-6ede6cd3ea0b", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:71544a3a-f905-5b59-9eb2-d23d6f36d017", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:01714a32-77c4-5c99-97e3-aaf218d8b95b", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b0b17e7f-8414-5f92-99f3-33c001373e83", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a43e1573-c1d0-52cf-a0d2-d0c1adf7b063", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7b18cac7-6a99-539e-a09e-ff7d1bfb8f01", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1e178156-939d-5c95-a076-ec53a065ac37", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:88d81bce-9292-5c95-993c-a35a67035a3d", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f3d9505e-ab00-59ef-96f4-899763d07e76", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.3" } ] }