{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d9de2b53-f140-5abe-b913-e685ae2ea6eb", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jms@5.3.27.tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-jms", "version": "5.3.27.tuxcare.1", "purl": "pkg:maven/org.springframework/spring-jms@5.3.27.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:cedc85d2-c901-5df7-b091-de6b5320d474", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.27.tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6c8c922a-a294-52ca-b5d9-65d0cf90318f", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.27.tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d9c4eb4-5b2a-5760-9627-85e064a763dc", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.27.tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b6cd7ec4-c4b2-5b7b-b15d-8c097670a766", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.3.27.tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:364b672c-5dd2-57df-8223-4e6c9cf0679f", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.27.tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5c1cfab5-0da4-5103-adc3-2e186c5b1357", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.27.tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b3105efb-34a2-558c-835e-d5c18e7b7c87", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 5.3.27.tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:200d2a42-090d-5030-9799-1f70a1613837", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.27.tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f0f18967-3042-5059-8742-823c5886b4a6", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.27.tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7e6c3cdc-ff75-53b3-bf9a-1e876ce87085", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.27.tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e8b465c-4ada-5cca-9dd5-089a6cd6ad9c", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.27.tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:832090be-a28c-5a79-a32f-d6b013dcc3ca", "id": "CVE-2025-41234", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41234 is a false positive for org.springframework:spring-jms 5.3.27.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dad5d16a-e06a-5d54-8e1f-47d969bcc761", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 5.3.27.tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1c2c97d7-f261-5325-ab9d-d7947d63175e", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 5.3.27.tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a48cf611-204f-5636-964a-b01e52ea51b8", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 5.3.27.tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:03e75735-42c0-5e31-b28a-f9f10db3a1ba", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.27.tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b6a4aceb-714c-5e53-a5ee-b21c59cccb66", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.27.tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.27.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.27.tuxcare.1" } ] }