{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:79acbee8-4ba7-5ab1-aa48-226e02e13ace", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-orm", "version": "6.0.16-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ce1ee927-cac8-5f13-87fc-167e2a2a3ce8", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f1a6d6ee-d56d-51bd-b34f-7638c67a6c6d", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:38c91da7-93a9-546a-97ef-1dd635c7c569", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:268ea871-2127-522c-b4cc-c8522461d0d1", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ee895f9a-5703-566b-b587-456b968ccf90", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3c09962f-44aa-5b99-b7cb-2bb2abdbd27a", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d26995b6-32f1-51a7-963a-55ccafb93b4f", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:18e121c6-bddc-5521-9f30-851f6002fdef", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dfe61a1c-d6a9-5a0f-9ce6-baae6c3b4981", "id": "CVE-2025-41234", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1f060f25-b93d-537b-8965-cdd45821e8b5", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:da0966bb-7242-55c9-a7a1-207b4b4f832d", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f9f69435-aa81-5e28-8119-53c30aa512e1", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:85e40ae0-1e3c-57ce-8ff4-d427cd51250c", "id": "CVE-2026-22735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22735 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:34268eb4-92fb-5d66-bc7a-ddb6f9914e13", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 6.0.16-tuxcare.3 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:55f926d3-236c-5fe4-8d0a-436f95a5386e", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:eacfdc68-2406-5c4b-af50-4bb32f426eec", "id": "CVE-2026-22741", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22741 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f6934f26-64b4-5eb7-b2be-a083e6d994d6", "id": "CVE-2026-22745", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22745 is fixed in version 6.0.16-tuxcare.3 of org.springframework:spring-orm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-orm@6.0.16-tuxcare.3" } ] }