{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:639002aa-a1bd-5353-b089-751e274c0266", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-tx", "version": "4.1.7.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c51a8f08-a62d-5ab7-a414-547df3eedbb1", "id": "CVE-2015-5211", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5211 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5b71765e-e4a2-5307-9edf-b4014bb25d11", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5566c15c-a4b4-5560-b006-67177f2a1596", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3da31876-ad31-5a83-bcc1-cd072eb44048", "id": "CVE-2018-11039", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11039 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e474eba0-f963-56e1-a2cd-c71294a45e89", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:03a2bd36-508d-506d-80f4-29c8fcd7afc9", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7f7bddcd-8784-5728-b5cb-db579d4d4759", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9a92e7a2-b6a6-5b8e-ae1f-9cbddc055643", "id": "CVE-2018-1271", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1271 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3d58817e-b9bb-5b90-8ce2-587632ae555d", "id": "CVE-2018-1272", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1272 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1c1a8248-fb91-5207-8f7b-11b1332aa5fd", "id": "CVE-2018-1275", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1275 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3acb919b-6ef8-5d82-aff6-30f5c86645c1", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ee8f46c3-4532-57e1-bad8-8f2c9ef42934", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7cc5e921-015a-5496-9da1-003fb81c48de", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:09efa06f-7b71-571e-872f-78de485c04a9", "id": "CVE-2022-22950", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22950 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:391d8017-538a-57ee-a8a2-cf7fdedde26b", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d85055c-8603-582f-b945-f3c814d14d9f", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:57900ecb-1d9a-5f5b-b170-8dd29069250a", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cfe25c6f-13fd-5bd1-9845-e37883cbc8ec", "id": "CVE-2022-22971", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22971 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b5d86b6b-80fa-5979-8ae1-1db7f233a7d7", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:79f4b62e-8848-54bc-bfa6-6a7b9cb88670", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:266c8ecb-2253-56a7-8ace-7826e9d7498c", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7cc12284-7b1a-5dab-b7f1-f7c39f4a59f5", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:807b403e-8a8d-53dd-827e-88728030bb7e", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:01397111-0a64-5feb-9e38-4fd3845e44fd", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dc3d9d44-d0e2-5154-8407-217979797f31", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:08e71fc5-51b3-5f9d-8760-2c93c66b119e", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:46078032-6ac1-58e8-ad8d-bc84878a4ca9", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af733925-4002-50c6-a617-a5e98b75fdbc", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:664c7943-7549-57c4-9dbc-b2f9765e1ded", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.1.7.RELEASE-tuxcare.1" } ] }