{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8b72787b-e92b-5cf5-ada8-096899331aed", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-jms", "version": "4.0.0.RELEASE-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2b2f85be-4d7d-5a39-aa60-f1d761480fdb", "id": "CVE-2014-0054", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0054 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3623c496-f6a6-59cd-83bc-803890465a1b", "id": "CVE-2014-0225", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0225 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8abea6df-f4cd-5d0f-a9cf-03fe11422854", "id": "CVE-2014-1904", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-1904 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bcb25ddd-7bd1-5003-bd2c-8468c59d2abf", "id": "CVE-2014-3578", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3578 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2df748c5-6d99-51ef-ad96-dc5eb39432d3", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a6d56154-77f0-5984-b89c-7756069e4791", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c6d62c9f-b94f-5db4-bd1d-95d60e007946", "id": "CVE-2015-5211", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-5211 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3ba94c47-e78a-5dba-b128-ffa1a1731a72", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c92ce3f2-bfaa-5ddb-b460-5461eb8392af", "id": "CVE-2016-5007", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-5007 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5b5696c2-ea49-5d50-8882-c9d4d9b27b98", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bc77546d-da31-51ba-b162-045adcee093b", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:93345dfb-8da1-5a6c-ba5c-a36186ba3ce6", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:00c0d470-5915-53ef-925c-3c4296912d42", "id": "CVE-2018-1257", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1257 is a false positive for org.springframework:spring-jms 4.0.0.RELEASE-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:28b7b101-8f2d-5e75-873f-75137960fbdb", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e8eef1c5-7600-51ae-aa79-84d516c3cce2", "id": "CVE-2018-1271", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1271 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e080cd68-3e2e-5e8b-8654-0da6e2378072", "id": "CVE-2018-1272", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1272 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:08f4613e-ad2e-5634-afc6-9c34efb41f4c", "id": "CVE-2018-1275", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1275 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:57eea440-8136-59a7-a415-502fb78cc1ef", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d92c916d-4871-536a-9241-95b4b09d0282", "id": "CVE-2021-22060", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22060 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5706a907-40f7-5d7d-b02b-9636ea8abf1c", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b3741c39-c42c-51ba-9c0b-167f4ad952e0", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7726e5b5-cec0-5185-9b07-25c53562e367", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:20d737a2-9e15-5d80-af8d-47ad6b68078e", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:190f7c54-2d2f-5da5-a044-36dc7272b42d", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ff549c9a-f533-5deb-872f-e4fdc58f791a", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d97c54db-8347-52da-b843-9f8d269bc1c9", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5e27d49a-7402-548f-8c19-05c453306558", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0adb4e7b-37da-5f53-a7db-92e89cf3c58f", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b1126f20-9201-5916-b8da-4c5d8f3cae5b", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b5ca9c5e-9445-5e2a-a7d2-d66a1f444e9a", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2ca07af5-d467-55c9-bad2-f9b893f13d2a", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a0f13192-5fc5-5214-ae53-ca403bba3744", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:226848b7-2321-538b-9030-2ac4a1879095", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8987aaae-9298-5266-bafc-0a4709d97289", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:da685b25-a73b-5693-91ed-661c147df852", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7efa8591-1de3-51ac-8562-532d66cc3a29", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:580d99ef-8168-552e-af38-074d9926537c", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3306e6a9-194f-52bf-b946-90a28556b622", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:61b5bf9b-c92b-5803-a1f2-00bc1157d639", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:03022950-7cad-5766-9bf9-ad9deb2b72e5", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.0.0.RELEASE-tuxcare.2" } ] }