{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c2532fe0-f854-513c-8c20-8d94425e3b79", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-tx", "version": "5.1.5.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:82a56d5f-4b88-51ea-8f59-559166f5e763", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4a3ecb4d-7937-5833-940e-740568c4b3ab", "id": "CVE-2020-5398", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5398 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f81accb1-4883-525f-bb69-d7f442e61083", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:da24e03d-9e4e-5550-8846-a3034c3dde93", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bc5348c9-c7ab-5b65-a8bb-fb77e6f7dc23", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fd4af449-67fd-5e21-813d-3ca54a62b8f4", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ecd8bf71-0d07-59a2-b1a5-0011817061fd", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f5d852d4-cce2-5962-b746-da4c68ea1379", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7d4d7247-e0e0-57ac-88b4-fef184047ef5", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8127be97-33a7-50be-b236-bea863d41570", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e33eeb8b-0e3d-578e-aeb5-5e2d07a02938", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:43dca909-3900-5932-81a2-a4b92fbae453", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e39cc23b-ccfb-5a02-ba14-add170498485", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:88f0340e-323f-5261-b6c6-c022da316963", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aaf86a3a-d633-5b60-8d66-61b26259ba85", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:322aee07-4ca2-5ea1-9eea-bc71ae0f16b5", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1fb0bfff-d84a-5ce4-ad3f-6f4ecbeb6dcb", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-tx 5.1.5.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0a3c54fc-c1ca-56f2-ac5d-0862db434bca", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9978c09a-551f-54ed-ab70-b1330f567fc1", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b8648318-816f-505a-847a-99980d5cb772", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bbaa1519-87c2-52b0-b74c-2bd58bd3b079", "id": "CVE-2024-38828", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38828 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bccad18e-64f6-5b67-835e-3db00e23e9b4", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:49142c06-ff1f-56f1-bf6b-98041d6e3b8e", "id": "CVE-2025-41234", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41234 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:722f73ff-cf1b-51e6-8e16-baec855c20e3", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a872e27b-e614-548a-9f91-b9c7edb38bf3", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7f993711-f0ee-5e03-96ee-26022f808048", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:da9033df-9dd2-543e-9377-c41b29b186ec", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b029d8e5-c6dd-5ce7-b9ad-b980b5257735", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:67eb3d2e-e6e6-57cc-8bc0-cd38d9da5987", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4a744e0c-6a43-5e1a-9327-5659894fdd06", "id": "CVE-2026-41838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41838 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5a937eed-9671-52b5-baa6-8143987edb44", "id": "CVE-2026-41839", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41839 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dbd4225c-4e82-5a7b-aad5-614d2c746366", "id": "CVE-2026-41840", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41840 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:459fb507-76ce-531c-9fcf-f4e6d6053334", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1cc0e75f-c5e3-5039-a8d1-e98a2683133c", "id": "CVE-2026-41842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41842 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:60abfe54-02ed-587b-b01f-de8a058bcdcb", "id": "CVE-2026-41843", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41843 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6362c298-ab21-5943-9108-ce2d5760e2cf", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:56e22814-0350-5c33-9385-1ed1fb5ac11b", "id": "CVE-2026-41845", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41845 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b7feaa86-b44d-535a-8e12-36e567cf42e6", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:793cfc21-3d03-5047-9604-ef37f85621dc", "id": "CVE-2026-41847", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41847 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fefc2084-58c3-5c26-8c4e-81a147949adc", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:99a15e32-3f02-59a9-a38d-eb06461319c7", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5d568a8e-5ca7-5c64-85a7-74721097b8e5", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9fdf7787-3c3b-5649-8ce9-3e20987f2b57", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:367d2a40-1840-5848-be87-d44ed549e5d5", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9a323495-fa5f-5fca-a74f-224fd9cfcca7", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7a8b18e1-9c5e-55e6-a55b-87079310111b", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.1.5.RELEASE-tuxcare.3" } ] }