{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:25b3a5d8-dec2-5374-bfbb-65755c57619c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-tx", "version": "5.3.24-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5ad82398-697e-585b-82eb-c41b5edf6450", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.24-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ebce3d43-a6fc-5927-893a-ee64842131e3", "id": "CVE-2023-20860", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20860 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8559766d-8fe7-5c4c-acf4-37fbe1a0bd1c", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8800fb11-8211-5693-bd2d-930475a0a3d7", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 5.3.24-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b9fd26c5-f578-5806-bd02-e5d6ea614e87", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aafa8f53-c3dc-5af4-839c-13010737bf0b", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cf347aaf-47b1-54fa-a749-16e89f3391ba", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1f3c60ad-d9f2-5a1b-88c7-57c4481a9a20", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0be79e56-6743-5262-8a52-e1f977db7349", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f6296144-ba14-593b-9405-210b88051e67", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3e23ca9d-eb3b-5fe5-a6ed-9f1bfef8cf25", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:84bc3b00-e400-5ee0-95b9-5f7882cb192b", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:98bf556b-f1eb-5479-8331-f86d29b3212f", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0a32fe54-65de-5f05-af33-1ba6017deb60", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:117cbf6a-6f50-5c63-9c4f-b361f56b5f3d", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:63a4a130-0b9b-5daf-9a6f-23983563f7d2", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4c55b720-76f7-5582-a8ba-b06ceaa23b97", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.24-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:75a8c4a6-a2ea-5057-aebc-64b5a570211e", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.24-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:65904dfc-d21d-55c5-99fb-01a8970b68d4", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.24-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b8fb1059-db95-5359-897c-25b084b35981", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.3.24-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:25e1e121-6831-5292-9ada-79e41d6ae4ee", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.24-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:17fb3770-b856-5272-95a3-ff2c8d798c2b", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.24-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.24-tuxcare.2" } ] }