{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0a64d673-b0f0-5e70-98cf-38c96b0aa548", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-oxm", "version": "3.0.5.RELEASE-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8b80cf00-b4ca-53a3-adcf-b883a964a7cd", "id": "CVE-2011-2730", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2730 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d69cf4c5-a219-5ccd-b968-aa3945b117cb", "id": "CVE-2011-2894", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2011-2894 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:162a1258-9d9d-5faa-90e7-bd5aeac412e4", "id": "CVE-2013-4152", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4152 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0d47fa2e-9543-54f7-812b-217fd6128c98", "id": "CVE-2013-6429", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6429 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:89fa8c3e-de9f-5e3c-8525-ad96d2d3b6fb", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3257d973-40bc-5580-9c29-88e03a57a56e", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:76d4842f-a4bc-58d2-a195-1ed46fb5eea3", "id": "CVE-2014-0054", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0054 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2f4c72f4-43e4-520a-8500-1bc9608339e5", "id": "CVE-2014-0225", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0225 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f93fc91b-1a38-5a01-b973-1ce0b7492cae", "id": "CVE-2014-1904", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-1904 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:db5cbdb5-4209-5a70-9525-bd0d2b62e1f8", "id": "CVE-2014-3578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-3578 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8b80e56d-39df-507a-b962-e3395632e689", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:921c8d86-8410-527c-bc5c-a158b71030d9", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7cae8d9d-22d3-5b9a-bbbe-1cb2b06ad0a2", "id": "CVE-2015-5211", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5211 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:76845a59-87e4-53ef-a148-01b96a88550c", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e4cf4052-8b3c-5485-956b-1f3d2a52b1c5", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:38880282-5b59-5fd2-9818-2fc46834ef86", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e78f43c2-a996-55da-9856-42a45fa1172f", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5839e334-0c59-59b8-8d68-cb203966a5cf", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:51553bc7-5d17-5056-acf9-dbfcbd336d18", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e1ce0e15-fc0d-5056-8234-09c8af82c212", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ee32633b-b2b2-51f2-b6f4-d4e9c0a763fe", "id": "CVE-2018-1271", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1271 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2d13b8f3-8397-54b3-876d-5af8f488ead5", "id": "CVE-2018-1272", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1272 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cbc89afa-1892-529d-8461-aae29709f274", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:83deb13f-4c24-594d-ab09-42bc7d5ba696", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fd99c669-0639-5f46-aba8-90d11c40446e", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:de8e5c3c-32fa-57bf-ac04-fc0dca9af864", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e33b5c11-1744-5467-83cb-70f2f882f089", "id": "CVE-2022-22965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22965 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bc23c82a-6e16-5f17-8f1a-c463516c578e", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cf823e18-d972-5292-ba2d-a29b8d7613b7", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c548bba3-bd19-5ad3-b49d-3cea081f1c0a", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a785d7e3-55b3-58db-8de5-4af9bf99e0bc", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6e3cad2a-c94a-5f5c-9cb8-f9359c0c3ae2", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b0fee21d-39c2-5390-8d06-077e7292d008", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:26fe05a4-82d4-59be-acf4-dcf1ff6b3dc8", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:57616acc-bf91-50d0-9292-2e0b13a52d10", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7260633a-98a1-50f9-a8f7-ccb6232c2d30", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:85b726ae-19d8-52f6-80af-6bf58e78b282", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:545d384c-746b-507b-a33f-5de3f3bf8b16", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:07c36ac4-9fc3-566a-b9a1-15ba58629660", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cdc39138-3820-5108-92be-912a53b83942", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 3.0.5.RELEASE-tuxcare.2 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.2" } ] }