{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4ea691de-b6d2-586c-922e-2b2759b61ecf", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-tx", "version": "4.3.30.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:57b8008e-5a21-5ca3-a027-e50e967a516b", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:42820df7-a355-54aa-9603-047e94460d3e", "id": "CVE-2020-5397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5397 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62d9d612-634f-5bf6-ab66-441de6e1c4a9", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e3df7a5d-115d-5372-94ed-ebadef942156", "id": "CVE-2021-22060", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22060 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aee30911-4659-546d-bf5a-1272cdfd4a9c", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c8d3484f-6fb5-5f3b-8425-bd0ff5a3c67c", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1a9668a8-20a7-5bee-abaa-3d336adb5201", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:09bdbf2a-de59-5b76-a39b-1e542681bdb8", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:19e9f7a4-6f75-5318-ba2f-a250e730499c", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c36fa01d-dbbd-5330-985c-e741390cb466", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6a856602-a5f7-5e53-8ce7-96df065c14e4", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e3361726-b9a1-596b-9910-dd73e8875691", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1fe0eff4-d7f0-5c10-9831-62ef95908ceb", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6f9835e2-99ec-5131-9c30-2e9ac0a750ae", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:629af736-6d01-5b03-b9b7-4bc904a1b8b9", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:92f425aa-7c18-5221-bc7d-3288a44dc468", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:870c5a3e-5b68-53f0-b62e-3185d6807b40", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aa4794a1-d561-5e44-b1be-d3d62ff6cd40", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:53c10a16-4989-577e-b2ae-59d81bbff7b4", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:55eb2feb-797b-5af1-be3e-60e85d7762ee", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d301252e-2297-59b5-a851-f7a939d524d6", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:514d7839-c2f0-55f2-af2a-ccd73f9b8c96", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:66a6c71e-8de5-51dd-bc1a-d50ad25deddc", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:88e0a59c-339f-5318-b8e5-5c0f818507c0", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a530854c-8b8a-50b4-916b-a980957abaf9", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 4.3.30.RELEASE-tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-tx@4.3.30.RELEASE-tuxcare.1" } ] }