{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:34d2e60a-3ac6-5042-a7ff-55bd8e0dee75", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-jdbc", "version": "3.0.5.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:350356d9-5f1c-521c-be89-1f1fa4d5fdf6", "id": "CVE-2011-2730", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2730 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8fad8239-0e66-5568-b28d-77d3b9e13f91", "id": "CVE-2011-2894", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2011-2894 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5124d6a9-cfa2-5680-8235-8ac0541e4188", "id": "CVE-2013-4152", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-4152 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:be41a287-bf9d-56a2-8e5a-4428facc8857", "id": "CVE-2013-6429", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6429 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e57a8618-625f-57d2-ace0-1c81f914c6bd", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:68478eee-0b7f-540d-86c0-85ce69a80cb0", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3c3582e2-e69d-599a-8b45-427f569fbf6e", "id": "CVE-2014-0054", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0054 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e3627849-a5b1-589d-abb5-6a4971bbc2a2", "id": "CVE-2014-0225", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0225 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aec96b07-97b8-5fcf-a6ad-803a5aff5d0b", "id": "CVE-2014-1904", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-1904 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d6ab8b09-97eb-5462-9fec-84f46382db20", "id": "CVE-2014-3578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-3578 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:284e9296-3a43-5da5-bdbd-ddc5c064c475", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6ef03222-8b33-59e7-b9ad-3c4b0e4bb998", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5564e3ca-acac-52ef-98a6-c7de37c33ff7", "id": "CVE-2015-5211", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5211 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a5c9b190-f8c6-56b5-8f3f-3b5ab4072f80", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0a8adad6-7659-5a6f-bb49-2abebeb6d76f", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a2bab65f-7214-5f5f-be24-68d01edae634", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ed1f8801-e649-5ec2-9921-19ecc945cdfc", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e110e9cc-da1e-51a3-bfac-6ddbfa4484c0", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:80bb139b-c067-51f1-bf09-df640f64468f", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ec46d5c2-5717-5302-aa6c-6999099e4ae6", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:36f54d70-1e14-51ab-aeb3-8881556fc64b", "id": "CVE-2018-1271", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1271 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7d4eb798-8e01-5567-a8ec-6ffc611ed17a", "id": "CVE-2018-1272", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1272 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a9675633-f2ad-5afe-bf85-8f700a78a13e", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:01575f84-149f-5880-b267-83fa86fb264d", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7632a8e5-c9f2-5f2b-9ac7-c83188e3f1f8", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cfc9d47b-8e34-5d27-bb18-76fdec58b8c1", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cd14b67d-aba3-52b0-a29d-b9c6cc43add8", "id": "CVE-2022-22965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22965 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f40784c1-0df0-55d9-aa11-a8d1cdb75aba", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:275a9aef-d823-5110-84f6-b793dc386530", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3c0d468f-937c-528c-a334-43c852ee3a3e", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:659a02e7-720e-58d0-a023-88b83166fb38", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:283cf067-7a2a-5e19-80d2-7afb47d995f2", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:098514f8-a7cf-5906-8b23-f1d81e772553", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:02b9b835-fc15-5ef1-baf1-4cec7213385d", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bb58cb7c-8368-5ca8-b0a8-21bcc99dd65c", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c1e533d0-b09c-54e7-b2c5-67774ba36e73", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8fe3ad99-b990-5d2d-af16-3e7c27d53782", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c424fb98-b24b-5c54-a1c9-906864f29257", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d0446703-3786-5f39-8315-21ab5bca2e5a", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3da63434-1397-5a30-b05c-e24a17ba0972", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.3" } ] }