{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a2311e65-9506-5d90-94ec-5ade92a35ee5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.4", "type": "library", "group": "org.springframework", "name": "spring-tx", "version": "6.0.23-tuxcare.4", "purl": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:150d2cdf-e53f-5f66-965e-f22df33ca4a8", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 6.0.23-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7c86e242-d795-5118-80ea-9d1b4f4298b0", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4800b103-0395-5909-92c4-1e9a5831b534", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:37f3e98e-f5c9-5f24-b001-43176d29243f", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:94da405d-692a-5850-9b96-cdead4ba7c33", "id": "CVE-2025-41234", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:aa3266e4-3ea1-5286-b487-214e8b304ce4", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 6.0.23-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:763752dc-4223-565b-bbb8-c5fcb8c1c51d", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 6.0.23-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c11a347d-0196-5606-89e5-8fc845afb34d", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 6.0.23-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c7126364-eacd-55cb-9d8f-06de3cdc7ce1", "id": "CVE-2026-22735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22735 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:20ac94ba-40fe-51c3-b7ea-79e33c71b204", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 6.0.23-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a9480650-131d-5cd5-8053-3b9b789aef6e", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5f12482a-02fa-5707-972f-c77761731013", "id": "CVE-2026-22741", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22741 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2e150a83-026a-5d54-a487-e15df66050f0", "id": "CVE-2026-22745", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22745 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-tx@6.0.23-tuxcare.4" } ] }