{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0d6b1108-375c-543f-9d34-3b261e19d18e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-tx@5.3.27.tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-tx", "version": "5.3.27.tuxcare.1", "purl": "pkg:maven/org.springframework/spring-tx@5.3.27.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3d61a32f-8ff4-5aa4-bfd1-a7d4e5a487b6", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.27.tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cf5f2019-5e49-5eb0-8eb5-d4a04d1336d2", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.27.tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d301c8c1-87a5-5790-a771-8fd928d07e97", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.27.tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd303578-bba0-5459-8dc6-2463b426856d", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.3.27.tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d68fe547-ec18-5649-b65d-8b20bb709ca8", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.27.tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2f68ab47-63bd-5db8-b155-d8f2a90743cc", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.27.tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c45ee4ee-8b86-552b-bfb5-20b7a22abb12", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 5.3.27.tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:225ae7eb-a287-5b0f-8e02-3d6f499dc870", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.27.tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b8ad42aa-f955-58dd-aa5a-5b78299c7680", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.27.tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5bbe9cfd-da92-53cd-ac2e-a0101775ea19", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.27.tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9a13a0a5-8c31-5f3e-b2a7-cffdf91b7cfa", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.27.tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:98331fa5-ab64-5db9-a100-b7346d19532e", "id": "CVE-2025-41234", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41234 is a false positive for org.springframework:spring-tx 5.3.27.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:905a3a1d-3c63-5792-8fee-aea2f2c01b50", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 5.3.27.tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c08968dc-a860-5dad-8e51-1d44c61e35b8", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 5.3.27.tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2262902c-a06f-52c6-bd86-e91095ecd3be", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 5.3.27.tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ba991eef-f226-5634-9d89-65bec3799c4d", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.27.tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.27.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d905016-b377-5c63-970b-ea9cc0c30c08", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.27.tuxcare.1 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.27.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.27.tuxcare.1" } ] }