{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:86441690-d74f-5b59-acf9-e65ab1cfc043", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-oxm", "version": "3.0.5.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:53cd5a35-8c6b-5e66-b2be-792514347646", "id": "CVE-2011-2730", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2730 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5ccf39c4-e885-5c64-ab58-5e70b944354f", "id": "CVE-2011-2894", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2011-2894 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:98ce167f-b601-5f98-8191-3a896c3a0216", "id": "CVE-2013-4152", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-4152 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5ffeca5c-c986-59b0-ac2a-79540bacd9c9", "id": "CVE-2013-6429", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6429 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5516dc04-e8f4-5031-9829-470338bb8b9c", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:18fc1ba9-77cf-5c56-b8e1-b1b8b2fc6c51", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e0824138-8f6f-5169-b662-de8c633b88c3", "id": "CVE-2014-0054", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0054 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bb85bc8c-69a3-5093-82df-84bfbf3e19e6", "id": "CVE-2014-0225", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0225 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6f71e327-b022-544e-9bf7-bb5d09d48db0", "id": "CVE-2014-1904", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-1904 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d16134ce-1f88-5f28-9795-ee528d84a1ef", "id": "CVE-2014-3578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-3578 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fdf4c7dd-3e0e-503b-8efd-5399d930b61b", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b734e6c3-98af-540d-8312-cc81c6592333", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7d9af49e-b447-59bc-88aa-8e30566e5836", "id": "CVE-2015-5211", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5211 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6ed68f7e-2e0c-50cf-8165-df924d474e1b", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6f47dd16-e9a1-578c-b87e-066ab39c77bb", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c2fcfd75-099a-51cb-b043-d62f6ae75bae", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2b575857-7d2f-57a3-b350-e44c70e7d5a4", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ef746693-d67e-5ca5-a18c-0e222308e29a", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3088525e-a4a4-5f84-803a-6c6e2c1e55ce", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2ba92547-b0c6-5cb2-b9e6-a950640f2de1", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e5a366eb-beac-5f14-9c19-58eb684c4190", "id": "CVE-2018-1271", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1271 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:46367a70-133e-57f9-a94d-18e4b365b369", "id": "CVE-2018-1272", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1272 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8b84b839-45d1-5a0a-bc02-3ef07024cd08", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:676cb0c9-b257-5225-a020-c81c2b477ae2", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:19873207-126c-5c2a-ad89-b6dd3e10cd77", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:296cb21a-1e38-5542-8ad7-5eeb0effa93f", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f64eb02b-5640-5951-b0cd-88a9016a0336", "id": "CVE-2022-22965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22965 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:87342631-6462-5016-a329-321887959ebb", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:345732ce-8ff0-5229-a502-cdc0bf8c4e6b", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:562a0c88-b395-5c54-88e2-69aeeeb87b71", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7304b9db-c3d6-595f-a4e4-73218caa1667", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1e8ad66a-aac7-51b7-98b0-6dbde24e0a9c", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e24df4d1-b93d-54cc-95ae-21f01203a7c0", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:73310f2f-b0b5-578f-96d8-35623fc2cedf", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fc897b9d-79fb-5ec9-a911-01dfc592607e", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:36e17cca-fb43-5abb-aded-1d8b8ea5a280", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a0d0e353-9212-5a82-a7dc-8f78fdba06c1", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:24fd5f74-1462-5554-ac45-c214f00edda0", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1bb00f43-e619-5d86-aa84-f2d925c7e4cf", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8d2d6dd9-3049-5706-9ec9-bcfb586a9b87", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 3.0.5.RELEASE-tuxcare.3 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.3" } ] }