{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ef4c0a15-ecb0-5a89-b475-67274db9c342", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-jms", "version": "4.3.30.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7617ba97-64bf-565a-a4f4-2b62d0c6d83f", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:59ef45d2-309e-52d0-b71a-c1a679d51149", "id": "CVE-2020-5397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5397 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9476314a-2d0b-5288-9ee6-c8b56b06c23e", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9698e4fc-5f74-5a85-854c-e84344436f0e", "id": "CVE-2021-22060", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22060 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:afe1811d-c038-5ed8-b101-2996447a3c78", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:093872f0-f0ab-5b32-bd57-5df111a97bb3", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3bc574ed-1b61-55ff-9d98-bc176ecc314c", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:93bb3b6f-4a85-553f-b59a-decf4da9afba", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8e6dd278-c72a-5aa6-8b9d-00bad80732bf", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:087f0422-32c4-59cb-923c-e8803937bf5a", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b6e59d24-baca-5623-a7a3-fb429668b555", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3f1e3a63-0b37-5905-afa3-9357d7462851", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b7e5dc17-c455-55f3-8ceb-d2fb5618ed9e", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1a244ac2-f613-562f-9793-3372cb668240", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1bb4179c-59f0-56e6-a31b-727718cba1b4", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:79beb3ed-0b8d-510c-8468-6a57f92ab53a", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:94a9fb95-04ed-5e84-b3e1-1e5c42c05eed", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dfea42f8-1ae3-5cfc-b3da-9011a34c30e1", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b4ab9956-1737-5653-b392-eb4192499a47", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:805bb038-3322-53ba-a98a-8b4150964bc3", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2b9d5f20-2024-51f6-a0e5-0bbeae9af8fc", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:70d1ac30-e4bd-549c-b2b8-592d28452577", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5194970e-c2f8-5138-99c7-6bb0f4b4970f", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1092823b-8552-5684-bbef-664441ab8fed", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:06f3bb89-b34e-5ecf-80df-a8afbc7eeca4", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jms@4.3.30.RELEASE-tuxcare.1" } ] }