{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:00ee8903-4887-5d68-9dca-2aa0ccbef5c9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.hibernate/hibernate-validator@5.4.3.Final-tuxcare.1", "type": "library", "group": "org.hibernate", "name": "hibernate-validator", "version": "5.4.3.Final-tuxcare.1", "purl": "pkg:maven/org.hibernate/hibernate-validator@5.4.3.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2f75f9b4-46f2-5d79-bd66-0d1d2e8d2f70", "id": "CVE-2019-10219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10219 affects version 5.4.3.Final-tuxcare.1 of org.hibernate:hibernate-validator." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator@5.4.3.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:17b2d54a-00f0-5f34-bee1-4e76e72a1429", "id": "CVE-2019-14900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-14900 affects version 5.4.3.Final-tuxcare.1 of org.hibernate:hibernate-validator." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator@5.4.3.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a5dacffa-a074-5a83-a5e1-5d513640a6c0", "id": "CVE-2020-10693", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-10693 is fixed in version 5.4.3.Final-tuxcare.1 of org.hibernate:hibernate-validator." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator@5.4.3.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6a6faae0-a377-54c8-9662-5cf557e35cbb", "id": "CVE-2020-25638", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25638 is a false positive for org.hibernate:hibernate-validator 5.4.3.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator@5.4.3.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:215b50e4-c181-5ba8-a75d-6bb7b240c327", "id": "CVE-2021-3765", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-3765 is a false positive for org.hibernate:hibernate-validator 5.4.3.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator@5.4.3.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4c18d9cf-c4e1-5cfd-b32f-015d0795512e", "id": "CVE-2025-12758", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-12758 is a false positive for org.hibernate:hibernate-validator 5.4.3.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator@5.4.3.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:675104de-d44f-58f2-974b-c64b16757986", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.hibernate:hibernate-validator 5.4.3.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator@5.4.3.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9ad0ad2f-f22d-5e18-8e90-d7da34d2114e", "id": "CVE-2025-35036", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-35036 affects version 5.4.3.Final-tuxcare.1 of org.hibernate:hibernate-validator." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator@5.4.3.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator@5.4.3.Final-tuxcare.1" } ] }