{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6bcc508a-286d-5bfc-af23-d51374fb6e25", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-jms", "version": "3.1.1.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9538014f-bb0a-5b30-b0b7-585de3c2a90a", "id": "CVE-2013-4152", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-4152 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7920cfff-ae20-5000-b9f3-98286cdb6158", "id": "CVE-2013-6429", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6429 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:250f8249-bb09-5d7b-916a-4705675deb22", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6464e76b-fe25-5d1c-b1ca-3a3b3a18dbdc", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:356abf06-e1c6-56f4-bed4-72bcc9743945", "id": "CVE-2014-0054", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0054 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:347e9f9d-2a88-5983-b83e-1fb89af7773f", "id": "CVE-2014-0225", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0225 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:149576f7-cd4e-5019-add1-d3e6c08c01ff", "id": "CVE-2014-1904", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-1904 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:22435b33-6e93-56de-a0ce-151667fd2700", "id": "CVE-2014-3578", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3578 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3a4443eb-5fae-5abc-ac54-2f236683cd99", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c45cab9b-c53d-5182-869c-c268e590de92", "id": "CVE-2015-3192", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-3192 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96550027-8406-53d6-a270-fd3f8973b276", "id": "CVE-2015-5211", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-5211 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8648ffaf-34ab-55a1-b39a-dfa62b09ccbe", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5f61f5b6-0365-570f-a55d-2b5a25582a1b", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a3eca10b-b299-54f8-bf35-5fb8aa9b217f", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1f7092dd-ac02-5450-b886-ae8f7d03ad4c", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c8606308-fd5a-5ec2-81a0-497703cbf94c", "id": "CVE-2018-11040", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-11040 is a false positive for org.springframework:spring-jms 3.1.1.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af91307d-7f47-5af7-8b55-bf2c08cd1629", "id": "CVE-2018-1257", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1257 is a false positive for org.springframework:spring-jms 3.1.1.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6cab17d1-b2d7-5f61-b339-dfcf6541ea5e", "id": "CVE-2018-1270", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1270 is a false positive for org.springframework:spring-jms 3.1.1.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a509b573-6129-5c1c-9146-de52fdaa1ff6", "id": "CVE-2018-1271", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1271 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:707c4805-1c09-59ea-8c83-3f134762a5c0", "id": "CVE-2018-1272", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1272 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3db0ba70-6e52-5331-8626-4fe1becdc3d7", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a62ade56-4e75-54b4-bdf1-3ad7fcd916df", "id": "CVE-2021-22060", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22060 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d0ea1b7a-abb1-580c-b90b-43812b80fa5f", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:76b2b2cb-5f53-55b9-9ac2-bc0b938c0fd2", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d0193d50-9f96-55a4-a49d-712aa1a56f24", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:41d830b1-9229-594f-a8cb-4012f827ff74", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2ac7fb18-f448-5ad2-8aed-3382baf662ea", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:06a1a506-f487-5dd5-96aa-900ea7f59e39", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0adce346-981e-5d31-aaaf-660d2a89b67b", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:233ea2ad-1793-5813-ab3d-38fb6f26c222", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:78f0cb46-fd13-5920-a275-9a5fd0a22f34", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:def6a848-c738-5642-bd01-e65edd33f5ac", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a09469a8-d45c-51d6-a2da-1abab453f884", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:60f3db4b-59b1-5bd2-8e7d-e7494e42455a", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:df2eaf8d-d562-5585-85d8-604bab4de9c7", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:997e76c8-2a1f-5555-ad07-cac69ca5adba", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:275df255-842f-5d10-b40c-3952cb924b20", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d01fae0-f2b7-5f3e-bd33-a79c8b10925c", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9b54a3ac-d2e0-55fb-89f7-d89b33572da3", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cfe052f2-9966-596e-8b67-5388a547de3b", "id": "CVE-2025-41242", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41242 is a false positive for org.springframework:spring-jms 3.1.1.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:964c21c0-eb1d-5139-ab45-d4a395b41086", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2eab92c4-7bbb-5186-b09b-4478e08a4072", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 3.1.1.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jms@3.1.1.RELEASE-tuxcare.1" } ] }