{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a383eff3-bcc6-59df-a32a-82fbca89a374", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jcl@5.3.29-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-jcl", "version": "5.3.29-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-jcl@5.3.29-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3050a5cb-158a-5b80-a665-5f5da9590958", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.29-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.29-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4d0325e0-1450-5ba2-81fc-9ded2d6c6c77", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.29-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.29-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d9e0cae1-6eb2-51cf-afa7-b8da4c760592", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.29-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.29-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:de34735c-ae41-5890-8fbe-9a443ba9f6bd", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.29-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.29-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:86c2922c-f825-5a0c-accc-7569a7bd7a1e", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.29-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.29-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2e70514e-f7fa-5938-9e8f-9dcd35d0087b", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.29-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.29-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4e590f7a-d891-5a12-b9f0-93d608f72999", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.29-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.29-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3453613e-fd5a-5378-ab52-5db4784ef684", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.29-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.29-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:53a300e8-0655-5fc0-8233-20a98dfdc6da", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.29-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.29-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:15f9cff8-f8bc-5f35-b9dc-56fcb66bc018", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.29-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.29-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:56fa45b0-63f7-57a6-99d3-47516147b57d", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.29-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.29-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:34b43647-2fd6-5e51-a659-341f568b6b86", "id": "CVE-2025-41234", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41234 is a false positive for org.springframework:spring-jcl 5.3.29-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.29-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:47148df0-e3c8-5a36-96f5-7e6d597aa31a", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.29-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.29-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:94508e8a-1f50-51fd-a705-1c494469ecbb", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 5.3.29-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.29-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a6159f21-780e-5ca7-8338-b71549ed80bd", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.29-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.29-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c7f1af23-c28a-5e2f-91cf-85416babd428", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.29-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.29-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0ffd1bda-afc5-5370-8ef3-b92346046db4", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.29-tuxcare.3 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.29-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.29-tuxcare.3" } ] }