{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a30f6095-354f-53e1-b42b-ef73625e0410", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.hibernate/hibernate-validator@5.4.3.Final-tuxcare.2", "type": "library", "group": "org.hibernate", "name": "hibernate-validator", "version": "5.4.3.Final-tuxcare.2", "purl": "pkg:maven/org.hibernate/hibernate-validator@5.4.3.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:58e2d507-b449-5c84-9c9a-ef096dab14d8", "id": "CVE-2019-10219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10219 affects version 5.4.3.Final-tuxcare.2 of org.hibernate:hibernate-validator." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator@5.4.3.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dc8359fa-b4eb-5c7a-b1d6-33724b1c1283", "id": "CVE-2019-14900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-14900 affects version 5.4.3.Final-tuxcare.2 of org.hibernate:hibernate-validator." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator@5.4.3.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0d76824c-6dcc-57af-969d-23d0e097f0d4", "id": "CVE-2020-10693", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-10693 is fixed in version 5.4.3.Final-tuxcare.2 of org.hibernate:hibernate-validator." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator@5.4.3.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:79643053-cbe3-551a-90f7-ddf9310711ed", "id": "CVE-2020-25638", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25638 is a false positive for org.hibernate:hibernate-validator 5.4.3.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator@5.4.3.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:36b8d05e-b4d2-53de-845c-dd813c287014", "id": "CVE-2021-3765", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-3765 is a false positive for org.hibernate:hibernate-validator 5.4.3.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator@5.4.3.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2e0a7697-8cad-5600-8d72-8f814bb55085", "id": "CVE-2025-12758", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-12758 is a false positive for org.hibernate:hibernate-validator 5.4.3.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator@5.4.3.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:24c9a523-9268-5fa2-8063-f9a529e90ef5", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.hibernate:hibernate-validator 5.4.3.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator@5.4.3.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:21f72c68-bd53-57c6-89ca-7b62ca5e9ea4", "id": "CVE-2025-35036", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-35036 is fixed in version 5.4.3.Final-tuxcare.2 of org.hibernate:hibernate-validator." }, "affects": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator@5.4.3.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.hibernate/hibernate-validator@5.4.3.Final-tuxcare.2" } ] }