{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1e6a73aa-98b7-553b-8f56-964fbec1fb57", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jms@5.3.31-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-jms", "version": "5.3.31-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-jms@5.3.31-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d37d97ee-2f45-5c5b-8253-7d491278aee0", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.31-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fe2d304b-306f-5b01-a3cd-ba5768b8b6a5", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:31a78190-0984-5b3d-aafe-632c2e7b551a", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8a6498a5-2d2c-5b60-b075-b300809d11e8", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a2a0c761-bbc2-55d3-80ae-9e5d7ab08dd7", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b7d21b44-fc74-56d3-9054-5d35f5282e29", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a9c3d69c-affb-5b85-b2a1-087fd7016cac", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2acea686-3db4-5110-bb13-2c753b3d53f6", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1f7b7d40-c6cd-52c4-bcb8-bc6133cfe4c2", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:01d346af-5ee7-5988-aded-e41880106611", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:197b040f-435c-5662-a652-866000bca0a9", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:05d52e0c-79d9-5bd3-9cc2-45dd71a32942", "id": "CVE-2025-41234", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41234 is a false positive for org.springframework:spring-jms 5.3.31-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4e11980f-be4d-5114-8f80-8afa52872c9d", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d5347310-695a-57a1-8f1b-e55ca5b36fbf", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b849889f-1112-5b4f-a88b-588203fd95dc", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4f32ddf6-ceda-5a58-a494-711d370fea96", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.31-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9f5b88be-ba38-540a-9d08-1d34922d4995", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.31-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0cc7c48c-6c0a-5635-9b53-9d0ac80235cd", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 5.3.31-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:60110bf7-6740-55e1-8efa-0ceaa4798413", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.31-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.31-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b646006d-2ab0-5fea-a867-33a0a3e0551a", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.31-tuxcare.3 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.31-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jms@5.3.31-tuxcare.3" } ] }