{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1af951e9-ab57-5778-bbd3-cf0dc36492ea", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-jdbc", "version": "4.0.0.RELEASE-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a59a9a24-037c-593c-bede-c66266c5747d", "id": "CVE-2014-0054", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0054 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d23d87b9-9500-5253-b70f-d2dc8be8d4bf", "id": "CVE-2014-0225", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0225 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d23dff86-fa77-55f6-bb22-9756ec9857ca", "id": "CVE-2014-1904", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-1904 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:61c1d426-d42c-5ccf-b8cc-72bd039decb1", "id": "CVE-2014-3578", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3578 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:45a437b7-3408-55bb-9ca6-253a4e1d4dda", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fd03fd69-3b0d-56bc-84c6-2a7f9f24f96b", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8bbc3d8a-8646-5317-b2ba-666e4a56cad9", "id": "CVE-2015-5211", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-5211 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a5a08ded-d8b1-5d2b-8463-61b4a788a25f", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:08d18a04-d51e-5e42-8c66-19d479641b42", "id": "CVE-2016-5007", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-5007 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b63fddd3-5961-58ba-8c9a-919182cf3d0a", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c7f7dc7d-348a-5128-a11b-72398c4eabce", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1c727118-71b2-566b-a61a-94b5055891ad", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:884b9cdf-df2b-55e5-aada-57bbff6a1909", "id": "CVE-2018-1257", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1257 is a false positive for org.springframework:spring-jdbc 4.0.0.RELEASE-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:91c7bf0e-0942-5e4d-9b9e-91a0c59d7184", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7cfc87f1-f6a6-5aa3-aaa9-b7926d34e2c7", "id": "CVE-2018-1271", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1271 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:73b50d97-7d7b-556b-96c8-8854d13ae260", "id": "CVE-2018-1272", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1272 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6717517f-7deb-57ae-8602-d49dec893f22", "id": "CVE-2018-1275", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1275 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e36e9c58-9a8c-5bd1-8d69-a2a7b0052acd", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2ee8253d-4f46-56b2-a75a-7c410055107a", "id": "CVE-2021-22060", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22060 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0c26b35a-70f3-59c6-bc24-1a2d45bdc063", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0f3b2f38-3462-500f-9134-f1e47c91d7b9", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4a8173bf-d03a-5361-ae3e-649decf9eecc", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ffd0f722-e617-5964-8dec-e915690e70b3", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:052b838f-cc1c-5c7e-963a-632c6bfbbf7d", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ebe0a7e9-864f-58ac-9f2a-7b3eb3c6fb68", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:371cc4b3-9387-5f83-97a3-ca76be1f7df7", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:de7940a3-e798-51f3-b45d-3dedb2870ed4", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:34965351-48de-5c1f-a7ac-3e27a79be4a6", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bb145ba5-af18-5fad-a2c4-b5b07493f161", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8bb3aaeb-b052-5833-bbb1-fd1a211a4032", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d14d347a-d04a-5b66-8cdb-dfe9097d8a96", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2375e89a-240a-543e-ac2a-94db4dda48a1", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:97053b2e-8332-5a8b-8b10-a4f26ac1f2df", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3db23b70-cff3-5095-8696-4f21f892819b", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e4ca4d1b-1f99-5242-a546-eb87dcac036a", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:593182e3-0918-552a-81a8-152a90fa61c8", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8e39b455-a2ea-5db7-b52e-e6ef6d336dcf", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6d56dcf6-5898-5c27-8f4a-22022f7ac90c", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:642594ef-d890-5957-9488-b15375de08bf", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4fdec483-348b-5d6e-bca0-4193769243b4", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@4.0.0.RELEASE-tuxcare.2" } ] }