{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:440c7e64-5474-55e2-bbb6-51a88d85fc9f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jms@6.0.23-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-jms", "version": "6.0.23-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-jms@6.0.23-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:74688d42-a5cd-5581-ad2e-8243c58f2486", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 6.0.23-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@6.0.23-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:78ba0d02-3bab-52fa-a9fb-e329c25cad2d", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 6.0.23-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@6.0.23-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e48e316-2507-53ff-83e7-21434cd8639f", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 6.0.23-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@6.0.23-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d8e9cc79-1485-54ac-8192-48b441d19528", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 6.0.23-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@6.0.23-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:569888ed-c52d-551a-8f7f-317815767f3d", "id": "CVE-2025-41234", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.0.23-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@6.0.23-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5f3a884d-ab5b-514a-adcf-0e9c0563430f", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 6.0.23-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@6.0.23-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8a0f85c3-bcdf-51a4-8121-95c678fcf0f1", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 6.0.23-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@6.0.23-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d562efa3-3733-59e7-97f0-7cfd5a8d4c03", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 6.0.23-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@6.0.23-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:87a06ce9-772e-54a6-a5f5-eb1243ff85be", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 6.0.23-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@6.0.23-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:993e2e15-68d5-5e09-9226-48ed87299fcd", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 6.0.23-tuxcare.1 of org.springframework:spring-jms." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jms@6.0.23-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jms@6.0.23-tuxcare.1" } ] }