{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:2cac8e89-56ec-5ba0-9c2e-0f9212f4bef3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-tx", "version": "5.3.25-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7e112767-0d49-5c60-bd17-2fd8e355cc25", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.25-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4994db28-8cf5-5f01-b44e-c09bc8d8b2b3", "id": "CVE-2023-20860", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20860 affects version 5.3.25-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1858c098-6fe3-5781-8bc5-ebae3c4282e1", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.3.25-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2c3bf860-de30-56a5-a8f3-89bd21589568", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8eff8bdd-d609-5923-aa8b-b1f6de8e2ca8", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 5.3.25-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f98e8a83-6361-5647-9dbb-928f82a93b4b", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 5.3.25-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b0c6d308-5df2-589d-b23b-1d59dcb97ea6", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.3.25-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6b1d2c63-1fbc-58a7-8f9f-6ebe58014fd8", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.3.25-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6d9de424-8c76-5080-9d61-aead7b957b7d", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 5.3.25-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2aaae32b-f164-5f53-a83a-81c1df3f3974", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 5.3.25-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fcc6ba76-5a80-53b0-af62-83213e49d5a8", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.25-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7e4124bc-7c10-52e0-ab71-ff1a2ffbd005", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f5c242ca-2a5d-5785-9344-c48f7c2d7515", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d80562a7-3ecb-5f63-9ba1-2f298707e453", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.3.25-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7c3eada7-f622-5408-b3c2-f44bb0cd0601", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 5.3.25-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c3d10e47-f435-5fca-a1e7-4e984708adf6", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:06a9d215-ca61-5f77-a744-51a8850bbc4c", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:afa72850-0fb5-572f-9952-e2896883c043", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.25-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e6b78c5a-c7a9-5440-b310-840d10a3ed3f", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.25-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:12bd40a4-5295-5331-a65e-2c5298734beb", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.3.25-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ce381c34-3693-5fec-b286-5b4c0238fbae", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.25-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b88cb9ed-b416-5134-ae3d-938d099803c9", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.25-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.25-tuxcare.1" } ] }