{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0c2fcf09-7755-57c4-bb66-8b83f34fd953", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.hibernate/hibernate-validator-annotation-processor@5.4.3.Final-tuxcare.2", "type": "library", "group": "org.hibernate", "name": "hibernate-validator-annotation-processor", "version": "5.4.3.Final-tuxcare.2", "purl": "pkg:maven/org.hibernate/hibernate-validator-annotation-processor@5.4.3.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:06fedd3b-712e-59de-8b01-ac6d99eb6bb1", "id": "CVE-2019-10219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10219 affects version 5.4.3.Final-tuxcare.2 of org.hibernate:hibernate-validator-annotation-processor." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-annotation-processor@5.4.3.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5f51ce89-319d-547c-b209-5ac6cba40300", "id": "CVE-2019-14900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-14900 affects version 5.4.3.Final-tuxcare.2 of org.hibernate:hibernate-validator-annotation-processor." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-annotation-processor@5.4.3.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:17c39d95-94ee-5343-8c6a-c1a40c3270a3", "id": "CVE-2020-10693", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-10693 is fixed in version 5.4.3.Final-tuxcare.2 of org.hibernate:hibernate-validator-annotation-processor." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-annotation-processor@5.4.3.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b2d4fa76-70ec-5546-84fd-b55157e7f035", "id": "CVE-2020-25638", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25638 is a false positive for org.hibernate:hibernate-validator-annotation-processor 5.4.3.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-annotation-processor@5.4.3.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:89909212-adf3-5b6b-a031-de7d5a08777c", "id": "CVE-2021-3765", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-3765 is a false positive for org.hibernate:hibernate-validator-annotation-processor 5.4.3.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-annotation-processor@5.4.3.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9db09e14-0b7c-518e-81bc-ff329b1c2232", "id": "CVE-2025-12758", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-12758 is a false positive for org.hibernate:hibernate-validator-annotation-processor 5.4.3.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-annotation-processor@5.4.3.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d18b49f4-d705-5bc9-a9fe-51aa90057848", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.hibernate:hibernate-validator-annotation-processor 5.4.3.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-annotation-processor@5.4.3.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:71838a20-b82d-5922-b981-9db6305315b2", "id": "CVE-2025-35036", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-35036 is fixed in version 5.4.3.Final-tuxcare.2 of org.hibernate:hibernate-validator-annotation-processor." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-annotation-processor@5.4.3.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-annotation-processor@5.4.3.Final-tuxcare.2" } ] }