{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:19f1ff4b-390c-5b40-b4b6-f81f61491950", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-jdbc", "version": "3.0.5.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4437d0c2-1700-5942-954c-1f1417f003bb", "id": "CVE-2011-2730", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2730 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8f9df513-1993-5e72-9c0f-f05a48b3a4cd", "id": "CVE-2011-2894", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2894 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c79c0cf0-273a-500a-aedf-a14bed13cda0", "id": "CVE-2013-4152", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4152 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f0b7bab1-2315-5284-8c5f-443728440af4", "id": "CVE-2013-6429", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6429 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:354537b0-ebfc-5cf1-87f9-337b241f7999", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:60a7d431-6f6a-5c7f-a458-02a1300117f6", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7a47a8f6-fa98-5859-bc8e-901d86d801c1", "id": "CVE-2014-0054", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0054 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:064bce74-8061-5b5d-a232-237e3e854339", "id": "CVE-2014-0225", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0225 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:14618da7-eeb8-5348-945d-299d1700d026", "id": "CVE-2014-1904", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-1904 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8a9ee76d-bae6-52f9-a2a0-ea50fac49f31", "id": "CVE-2014-3578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-3578 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8e992b76-5644-5a5d-86c6-a5d573a4d685", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:63933d6d-0b8d-5703-ac73-3747f155c0a2", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:11a70c25-d463-5209-83ed-f50474df4abe", "id": "CVE-2015-5211", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5211 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d9aa36f3-5ebf-5295-afab-481539f83dd2", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f19c5acc-6e51-5a65-852f-47e2bf6f6aa5", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3ca88431-ac71-5125-a058-ccfa43301a03", "id": "CVE-2016-9878", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-9878 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a4b01ed5-742d-50e4-8242-c1df91a8a33f", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d3ed0e89-ff3a-5c4b-bc68-5c3ecad6ff21", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0fe5654d-1d7b-5d46-89f7-2ea89efcdbc2", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:91120c67-1d4b-578c-9a56-b21c29adf00e", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1f5e2f02-848f-5028-a2bc-f5b352db35df", "id": "CVE-2018-1271", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1271 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:95697d07-f3df-5c74-aedc-80f901c336c1", "id": "CVE-2018-1272", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1272 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3d5e63f8-87a3-5bae-8589-4a3e1ddbfbbc", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d7b37e11-4166-5b15-bffa-8e5b1097ae99", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d3b3fc8-24ef-5ba9-8ede-7d85e1fa530d", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5320d20f-590e-5ad7-9136-ec28e7df6add", "id": "CVE-2022-22950", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22950 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96bc216b-dc21-5fc9-861d-4d74cd6de9c9", "id": "CVE-2022-22965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22965 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9980b4b0-23ef-542e-844a-19f6094ccda8", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:28af142e-bed1-5d96-b708-e0d8416523fa", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:adba5cf9-bdd8-5105-929b-675aece1c946", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96a7851c-6b6a-5238-8254-fbd4e882a0bb", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:256a4d27-1e7a-5e1e-bfe0-d05b95190978", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:74a70c15-e372-5cc5-8ddd-514f675be120", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2d7f1cec-0842-5c76-ad46-90e81a5b758e", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5e751f1b-a506-5f2e-aef9-df2fc22d5d4b", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c0687bf8-265c-51a9-8a38-79094714547a", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:062b9a38-ead5-5a49-98c2-b812a145d596", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae7ac590-e0d5-5705-86de-61f4ef8bece3", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:18487a38-aa68-5465-ab85-30a5854d1670", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c6a768c3-e5cf-50a4-9c4e-1966a85654c5", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@3.0.5.RELEASE-tuxcare.1" } ] }