{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1364c242-f7a2-533a-9a28-ae9408daadea", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.hibernate/hibernate-validator-osgi-karaf-features@5.4.3.Final-tuxcare.1", "type": "library", "group": "org.hibernate", "name": "hibernate-validator-osgi-karaf-features", "version": "5.4.3.Final-tuxcare.1", "purl": "pkg:maven/org.hibernate/hibernate-validator-osgi-karaf-features@5.4.3.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b388730c-921e-5e6e-b56f-23090adc8578", "id": "CVE-2019-10219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10219 affects version 5.4.3.Final-tuxcare.1 of org.hibernate:hibernate-validator-osgi-karaf-features." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi-karaf-features@5.4.3.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:202a2f4e-b644-55c7-8515-7bf66f92ec0e", "id": "CVE-2019-14900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-14900 affects version 5.4.3.Final-tuxcare.1 of org.hibernate:hibernate-validator-osgi-karaf-features." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi-karaf-features@5.4.3.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:794ddc10-c9e6-5e22-a509-5843ae046125", "id": "CVE-2020-10693", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-10693 is fixed in version 5.4.3.Final-tuxcare.1 of org.hibernate:hibernate-validator-osgi-karaf-features." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi-karaf-features@5.4.3.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8adddbfc-bea3-5a7d-8b4b-04e57d8b98d7", "id": "CVE-2020-25638", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25638 is a false positive for org.hibernate:hibernate-validator-osgi-karaf-features 5.4.3.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi-karaf-features@5.4.3.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2adc4c6-2fb4-5c10-a38b-4cde212817c5", "id": "CVE-2021-3765", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-3765 is a false positive for org.hibernate:hibernate-validator-osgi-karaf-features 5.4.3.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi-karaf-features@5.4.3.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bfde0417-deee-542d-bcfe-31199bef384b", "id": "CVE-2025-12758", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-12758 is a false positive for org.hibernate:hibernate-validator-osgi-karaf-features 5.4.3.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi-karaf-features@5.4.3.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:627e25df-7e8b-5faa-ba1c-2643c231bda4", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.hibernate:hibernate-validator-osgi-karaf-features 5.4.3.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi-karaf-features@5.4.3.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:abb7ef88-082a-5e44-a8e0-8b588cca2bac", "id": "CVE-2025-35036", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-35036 affects version 5.4.3.Final-tuxcare.1 of org.hibernate:hibernate-validator-osgi-karaf-features." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi-karaf-features@5.4.3.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator-osgi-karaf-features@5.4.3.Final-tuxcare.1" } ] }