{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:383869b5-b8b8-5e20-837d-b36276cc4918", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.hibernate/hibernate-validator-annotation-processor@5.4.3.Final-tuxcare.1", "type": "library", "group": "org.hibernate", "name": "hibernate-validator-annotation-processor", "version": "5.4.3.Final-tuxcare.1", "purl": "pkg:maven/org.hibernate/hibernate-validator-annotation-processor@5.4.3.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:0fe899b2-efbc-56ac-8480-5c11958c9eae", "id": "CVE-2019-10219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10219 affects version 5.4.3.Final-tuxcare.1 of org.hibernate:hibernate-validator-annotation-processor." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-annotation-processor@5.4.3.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e48dea3a-ef8c-59ab-a697-4c08ab35dd83", "id": "CVE-2019-14900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-14900 affects version 5.4.3.Final-tuxcare.1 of org.hibernate:hibernate-validator-annotation-processor." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-annotation-processor@5.4.3.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2bec887b-2780-5966-97ee-1017de28f975", "id": "CVE-2020-10693", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-10693 is fixed in version 5.4.3.Final-tuxcare.1 of org.hibernate:hibernate-validator-annotation-processor." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-annotation-processor@5.4.3.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:16620366-f794-531b-aaa0-3da94d57135b", "id": "CVE-2020-25638", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25638 is a false positive for org.hibernate:hibernate-validator-annotation-processor 5.4.3.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-annotation-processor@5.4.3.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bed26c16-d357-5735-8f7a-b9a4910e5319", "id": "CVE-2021-3765", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-3765 is a false positive for org.hibernate:hibernate-validator-annotation-processor 5.4.3.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-annotation-processor@5.4.3.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:afa91cdc-c599-53ff-a850-ba0f63529806", "id": "CVE-2025-12758", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-12758 is a false positive for org.hibernate:hibernate-validator-annotation-processor 5.4.3.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-annotation-processor@5.4.3.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:16ae1a2b-ba52-5982-be8f-7b6ba6fa6ed7", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.hibernate:hibernate-validator-annotation-processor 5.4.3.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-annotation-processor@5.4.3.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ebb4d4b5-da08-564e-8f70-9b8d951912a6", "id": "CVE-2025-35036", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-35036 affects version 5.4.3.Final-tuxcare.1 of org.hibernate:hibernate-validator-annotation-processor." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-annotation-processor@5.4.3.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-annotation-processor@5.4.3.Final-tuxcare.1" } ] }