{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:dc666536-92e6-5a2f-a773-fbe366906c6f",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:maven/org.springframework/spring-jdbc@5.3.29-tuxcare.2",
      "type": "library",
      "group": "org.springframework",
      "name": "spring-jdbc",
      "version": "5.3.29-tuxcare.2",
      "purl": "pkg:maven/org.springframework/spring-jdbc@5.3.29-tuxcare.2"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:36f6fc72-c981-5fd4-a775-136f430669c7",
      "id": "CVE-2016-1000027",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.29-tuxcare.2 of org.springframework:spring-jdbc."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.29-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:76de4394-d9b5-5fec-998c-11e8586eb6ad",
      "id": "CVE-2024-22243",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.29-tuxcare.2 of org.springframework:spring-jdbc."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.29-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:e3527733-2e24-5f5e-bbd6-9e126c188bb6",
      "id": "CVE-2024-22259",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.29-tuxcare.2 of org.springframework:spring-jdbc."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.29-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:7535f0eb-7adb-565e-8d36-e9428857773f",
      "id": "CVE-2024-22262",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-22262 affects version 5.3.29-tuxcare.2 of org.springframework:spring-jdbc."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.29-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c61b9926-d71f-546e-be12-4790fc88671e",
      "id": "CVE-2024-38808",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-38808 affects version 5.3.29-tuxcare.2 of org.springframework:spring-jdbc."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.29-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:a1b4e9d8-27c0-55a5-bab4-ad2eae5d4640",
      "id": "CVE-2024-38809",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.29-tuxcare.2 of org.springframework:spring-jdbc."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.29-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:0c8a9e6a-deba-505a-9d32-1b89ee5a7086",
      "id": "CVE-2024-38816",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.29-tuxcare.2 of org.springframework:spring-jdbc."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.29-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:82fd8cc6-6666-5630-bec2-18dd081b241c",
      "id": "CVE-2024-38819",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-38819 affects version 5.3.29-tuxcare.2 of org.springframework:spring-jdbc."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.29-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:53b05e6f-5efa-5376-a67d-10e58ee20687",
      "id": "CVE-2024-38820",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.29-tuxcare.2 of org.springframework:spring-jdbc."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.29-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:b5745489-1bdd-5c5f-bf2b-4bb7fdcf8340",
      "id": "CVE-2024-38828",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.29-tuxcare.2 of org.springframework:spring-jdbc."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.29-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:40c564da-e184-5be7-ac3d-5f586746abc4",
      "id": "CVE-2025-22233",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.29-tuxcare.2 of org.springframework:spring-jdbc."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.29-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:e42028e9-8157-5f2d-a4cf-ad09550b329f",
      "id": "CVE-2025-41234",
      "analysis": {
        "state": "false_positive",
        "detail": "Vulnerability CVE-2025-41234 is a false positive for org.springframework:spring-jdbc 5.3.29-tuxcare.2."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.29-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:0355c88b-c658-5600-9dff-242436199aca",
      "id": "CVE-2025-41242",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-41242 affects version 5.3.29-tuxcare.2 of org.springframework:spring-jdbc."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.29-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:64f7aaba-f276-51b9-8c31-198f29d01495",
      "id": "CVE-2025-41249",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-41249 affects version 5.3.29-tuxcare.2 of org.springframework:spring-jdbc."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.29-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:31806297-3ff5-5e99-b3da-16eafbc45655",
      "id": "CVE-2025-41254",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-41254 affects version 5.3.29-tuxcare.2 of org.springframework:spring-jdbc."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.29-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:517ba8bd-e32e-50e1-b532-a3f810742cb9",
      "id": "CVE-2026-22735",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-22735 affects version 5.3.29-tuxcare.2 of org.springframework:spring-jdbc."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.29-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:b9e87d7e-4d84-5048-9ce4-59512dcc6bb4",
      "id": "CVE-2026-22737",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-22737 affects version 5.3.29-tuxcare.2 of org.springframework:spring-jdbc."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.29-tuxcare.2"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.29-tuxcare.2"
    }
  ]
}