{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9cccf517-f4c6-5ee8-b11c-55d2abb98ad5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jms@5.3.24-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-jms", "version": "5.3.24-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-jms@5.3.24-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7884f79a-f501-5210-847c-8696793f1518", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.24-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2cd5e879-728d-540d-a88b-07b71aa852be", "id": "CVE-2023-20860", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20860 affects version 5.3.24-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4904e7a6-712b-5c15-b796-eb2ac5ecea05", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bee2f88e-e15b-5578-81da-ef9a8bf669f3", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 5.3.24-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1c6900e8-f58c-5acc-ab67-c9d00a92a8fd", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4703b814-1cb9-585b-92f8-71bfd284ca39", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 5.3.24-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e0db3232-56b1-5cf9-aa59-043730b38af9", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.3.24-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5878974a-15a1-51b4-bde6-9e9a0f7d5f6b", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:59c1e2e7-818c-57b0-b82c-6e3db5069c50", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b75f860d-b6b8-5038-9c05-86ea77e6134d", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:abdd9f1e-f0c7-5843-98c6-62a64cb93775", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:82bf93fd-234f-5cbf-ba79-3f9c063fa38c", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8ca82dde-6429-5494-ba84-71003ba6170a", "id": "CVE-2024-38828", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38828 affects version 5.3.24-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ac6f2ad8-09c2-5759-b14c-f04d8e3cbc2a", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8dbd428c-55c3-5907-a3d7-19d08f171a03", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8a3d5b6f-3dcf-54da-aac3-79b3c250c67c", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4aee1471-18ec-5725-9356-a565625b0112", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f6a32b43-a3a5-5aa5-89a5-a72081e785eb", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.24-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e6916c8-6d57-5399-b88b-ee53c6a319b4", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.24-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.24-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.24-tuxcare.1" } ] }