{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d5667e26-5d5b-576b-96b9-b78f8c19b627", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-jdbc", "version": "3.1.1.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ba79863c-0ddb-5408-8617-f8f42a0dd8cc", "id": "CVE-2013-4152", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-4152 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d049103d-902d-5ff6-ad80-02cc80542b56", "id": "CVE-2013-6429", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6429 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3e7befcb-ec9b-58e1-98b4-d0284964fdb3", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:33a51154-4b74-5cdb-9d04-30ae6bf964ae", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7a283cfc-aed8-5abe-9559-47daf19fda6a", "id": "CVE-2014-0054", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0054 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:680fb5d3-a10b-5aa5-9e75-91d87e692bb2", "id": "CVE-2014-0225", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0225 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:42c908b9-718a-537e-a159-e45bbf014247", "id": "CVE-2014-1904", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-1904 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8453699a-d0ee-5e3b-9eea-4a5d5dd302fb", "id": "CVE-2014-3578", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3578 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9fa73e50-edef-5591-99fa-82f6f7a216bd", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:062fdd15-c011-53c8-8e71-4f81876a7c2b", "id": "CVE-2015-3192", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-3192 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0b194e15-41eb-560d-a851-297b95ac73ac", "id": "CVE-2015-5211", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-5211 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d7b0be24-f041-5a6d-a667-75052c54021b", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:deace17d-f6da-510f-8dc6-0b216ceb4eb5", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:127cef6d-3705-5296-973e-877106524de7", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a9ff07ed-4ec0-5fb4-b8b3-408e120a4329", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:84ed93d5-02a4-5710-a1e2-dc50def6451b", "id": "CVE-2018-11040", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-11040 is a false positive for org.springframework:spring-jdbc 3.1.1.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:735a1249-a072-5aa2-9fe3-a4a38f696319", "id": "CVE-2018-1257", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1257 is a false positive for org.springframework:spring-jdbc 3.1.1.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e65d593-cebb-569b-b43c-80e31d0c12db", "id": "CVE-2018-1270", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1270 is a false positive for org.springframework:spring-jdbc 3.1.1.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d3cf5b2a-4d5c-5563-af2d-7393cfd78c9d", "id": "CVE-2018-1271", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1271 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0c4ae1bc-13f7-5184-ad20-a252a84d1049", "id": "CVE-2018-1272", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1272 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f6308bb4-2bb2-5755-85cc-d0fc729d6270", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c01d9403-e183-5d75-a2df-1d459b3ed086", "id": "CVE-2021-22060", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22060 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c851363f-2056-5b24-916f-9cedf5f91d0b", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b5b2a80-ded4-5507-a5f9-dfc2c28b8ed9", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:957900cc-08fa-538c-8b94-3458723922e9", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ec65f485-d2a1-571f-9782-182bead2ba6e", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:002be833-247d-51df-aaa1-66c5e0ca9fa4", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bf08fc1b-f1dd-55d7-a6fc-2738ae81b557", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:72835f70-6b2d-5f4b-ab80-682281b8939c", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d64fd429-ba6f-514c-9a65-8c4fc6f07a33", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2c5fe8f9-18fb-5e89-b36b-d55eed1980c7", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fc018220-1304-5cc0-abbe-5eb8c251ce8e", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b1cd1ad-f1ba-51ed-a7bc-58fd61fbc9c9", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5c395940-0bee-56ca-b165-df05186da719", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:453e87ff-da72-50b2-a7fe-5f0960058667", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d693976c-fac3-5399-b946-a319fea3ec00", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2531851a-364b-5444-b625-e81053026af0", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aa8ac5d3-b0c7-5979-b93e-7c230a588704", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:53ba251b-3237-5b51-9a30-c76317b51b0b", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0c9e5817-dde8-50c9-88aa-e129f32b8da5", "id": "CVE-2025-41242", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41242 is a false positive for org.springframework:spring-jdbc 3.1.1.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bfbf7d62-fc0b-5c1c-ba0d-a3e09f1b2aaf", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:57fa82cb-626b-5cf7-b3aa-ebde03ea07e9", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.1.1.RELEASE-tuxcare.1" } ] }