{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:cb31021d-cb8b-5659-a7a8-c95b93e92cf5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-tx", "version": "6.0.23-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:85dcd90e-9373-5eb3-972a-9d337228fdc3", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 6.0.23-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fd208327-cf0f-5f6c-8043-aa6ab4ffb34b", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5ddf9980-fb13-53ec-8eb2-3ba078644cb0", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eb37e27a-6f60-542f-b630-488450493421", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:da0febe8-e2cf-59a5-af1a-e694b5779fbd", "id": "CVE-2025-41234", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fc7a7603-e102-5831-95ed-4f016d99d034", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 6.0.23-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b0c9700b-c340-53b6-b3c1-6240353b09de", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 6.0.23-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4e9945a8-3725-5e4c-b0ab-3183d5fb1f05", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 6.0.23-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d82c8527-e511-57e6-a832-3510e1bb99fd", "id": "CVE-2026-22735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22735 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:28d74bda-cde8-5879-85c4-a44b9e747350", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 6.0.23-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eb505c91-8b47-5663-ac1f-4125213ed970", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8618dfa7-dc61-5ca2-a706-64a0210aa890", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 6.0.23-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a682f9dd-d31b-56f8-9db7-6a060f73c27a", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 6.0.23-tuxcare.2 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.2" } ] }