{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9b0a34fa-904f-58d0-8181-5a7d8e562705", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-jms", "version": "4.1.7.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:66177303-447d-5655-b7f9-20dd82918f76", "id": "CVE-2015-5211", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5211 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e2ce7bce-3a41-57ab-b39e-538ba67f5e79", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4a107bb5-e4eb-53b6-82b0-7b868d488143", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af1a7c82-c869-5d94-9a5f-97d48b4b8c57", "id": "CVE-2018-11039", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11039 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:940eee4b-2b04-5ca4-aa28-de151c3bbeb6", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a0cae805-90b0-5d1c-a087-cc0132cad6c6", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b866073c-3d25-5e4a-bb7d-486c0f14faec", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0f615d19-7a16-5405-86fa-e6fd1c32b93f", "id": "CVE-2018-1271", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1271 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:08459826-8971-5720-8512-a15fada8568d", "id": "CVE-2018-1272", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1272 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:66677e82-259c-57c4-babb-d29db8b7457f", "id": "CVE-2018-1275", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1275 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d1c39f55-e64a-5736-8e34-68e663ced5bf", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1163637f-ffbe-5e96-878e-edc6225a9162", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3a92ccf2-14ef-55f4-b292-32bf91cec81c", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cb87d925-febd-5d18-bb84-3c1fd6c0bc19", "id": "CVE-2022-22950", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22950 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:58a25bf8-c543-55dc-a75e-4a6f217c4258", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ee8b055f-88d7-5e43-b34b-af1a61fa0135", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d87ea3b-d109-548d-945c-bb5b955b65ec", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a7f878fd-4f07-5197-9738-99b28f7b58e4", "id": "CVE-2022-22971", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22971 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:09d0ab43-6a61-5b6c-9b26-d4771342c652", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:83b88d8a-de70-52a3-800f-459c13f8c1f0", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:faaffaea-1dd6-50a6-8d5f-4224bbed1636", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4b745e30-8908-5690-88df-fef9ce2c153b", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3abb3df8-4495-5a4d-9e7d-6e26539ce3f5", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9705acac-2053-5dae-80e0-22699dbb6f84", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e95f9b96-0222-58b1-9524-9deb422ec1fa", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:47d16273-405d-5aeb-b207-88dfde3711bd", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:41e221d3-7157-5740-ae18-5214d607b18d", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e5aa272d-8781-589e-9c60-2fbda260fa79", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:00d3bc89-0365-56e5-b1c0-fa1fa81c33d0", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.1.7.RELEASE-tuxcare.1" } ] }