{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8586afb5-bd00-5ed5-a082-d75df488c118", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.4", "type": "library", "group": "org.springframework", "name": "spring-jdbc", "version": "6.0.23-tuxcare.4", "purl": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:45089f48-0a6c-5023-b30b-7c4678154da5", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 6.0.23-tuxcare.4 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5f7accf7-4e41-5bbd-bd1f-1282624c993d", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:724e0fee-5327-5243-be93-745cf3e63d87", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c9b75d2e-3d99-578f-bb6d-97c818b8e675", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ee6a4fce-fccc-5e9b-b4ba-a7408d199a02", "id": "CVE-2025-41234", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5980fb32-8c82-5018-8de4-352bccdf0790", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 6.0.23-tuxcare.4 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a29368b3-0857-5557-896c-c25e56528cba", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 6.0.23-tuxcare.4 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:66f15bac-8745-57fd-9f20-57a7535e0619", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 6.0.23-tuxcare.4 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:aed2d95b-b770-52b2-aaa0-e02852eab161", "id": "CVE-2026-22735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22735 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:131a3c0c-295a-5de8-a7ed-52934d99adbb", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 6.0.23-tuxcare.4 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:12921bbd-747b-5721-a005-6054496ee804", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:90e42f81-f545-513c-ac38-536435b7219c", "id": "CVE-2026-22741", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22741 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d01ded6c-799d-58fb-9bcf-07a51be71a3c", "id": "CVE-2026-22745", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22745 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.4" } ] }