{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:298bbb86-0216-589d-be7b-65134d84c05f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jcl@5.3.30-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-jcl", "version": "5.3.30-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-jcl@5.3.30-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:0d6e3848-5808-52f7-88cf-dceb3eb3fd2d", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.30-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f67ae849-f48a-5ac9-8367-acea53dda60c", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:38ce4399-57ad-51d7-a90d-e28162faab85", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f597fc4d-9786-5b22-9752-49acf6d2a774", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:32901dc0-a6a6-569b-bde3-aad8d6602a44", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:68fdb817-28fa-5f9e-ab03-b39e543ff803", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:999b6dc0-7eff-56cf-84c6-58e8facda5fc", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:21b1c5fb-6cd1-5969-9114-80ec274afa4c", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fbdcb78b-0b5b-5557-9588-6df26d883e49", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9966f1f1-cbcb-5516-876e-afe301e1cbc1", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fa98d763-2575-56e8-9a1b-9927bc2a1f7e", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9936fe43-b057-59f7-9516-084c68e911b6", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bc925982-f2e4-573c-b183-4343a1e95f02", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a3cd6122-d07c-584a-9895-e5db37f997b5", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.30-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:be554dcf-02da-5d3d-ad25-d8f9dd905636", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.30-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.30-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:84b0ac33-36b5-5e31-a321-a4b95ab459c8", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.30-tuxcare.1 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.30-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jcl@5.3.30-tuxcare.1" } ] }