{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a6ee7ae0-4b00-5a6f-96bd-14872605ef2e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-jdbc", "version": "6.0.23-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3aca9188-0feb-57c7-8d61-4a9a342cc0bd", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 6.0.23-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:77cbe011-fc43-541a-a2ea-4bae0b90c233", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8042a005-6c4c-564b-a2bc-4ab667105ec3", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:64fb18e3-fd4e-597d-9d88-e47fdde36740", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e3e1db58-0469-5d71-a1ba-bc735d35717f", "id": "CVE-2025-41234", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8b0c5bc0-f35e-5064-b01d-d954648a1f26", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 6.0.23-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:15580337-9869-5993-a4be-e02b4b90252b", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 6.0.23-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a43d577d-ed41-57cc-989b-96279925d441", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 6.0.23-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8debd025-d2f3-5b2d-ac28-9b53c9a32ef5", "id": "CVE-2026-22735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22735 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9135ac12-90c7-592b-a7d8-98371c38295e", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 6.0.23-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9ebe486c-92a2-5884-929a-5f7cd8a25965", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8aa47554-d75f-5eb5-838d-665a9c7fc09b", "id": "CVE-2026-22741", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22741 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:270dcba5-9884-5e99-8c39-93c090e52459", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 6.0.23-tuxcare.3 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@6.0.23-tuxcare.3" } ] }