{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1ed9142e-c3e8-593c-8af4-9b6a93af45e8", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-messaging@5.3.29-tuxcare.4", "type": "library", "group": "org.springframework", "name": "spring-messaging", "version": "5.3.29-tuxcare.4", "purl": "pkg:maven/org.springframework/spring-messaging@5.3.29-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:bb72fdee-a4a4-5314-9dc0-6e8c9d0f0508", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.29-tuxcare.4 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7cc7895b-b6dd-5118-a3e6-a055142e66b7", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:83eb4be3-dbee-579b-93b8-1243c13dab25", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8404efb9-729d-52a0-a360-85fa5c40a50a", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ee099cab-9828-5522-adf1-ea47a4741fdd", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7aed6058-e41d-5efe-b93a-d88b63e0a9a6", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:818bc731-9e70-550e-8aab-b5279e38632e", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c9cb4206-d0fc-5652-a95e-222e978a8310", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b34d7f74-7115-5693-8342-ab7e0d2363e5", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:be512c3e-537e-5958-aaf2-2a3e0d0e63e1", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f54ebe4a-7a5b-5299-ba99-2f4fae66e6b7", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cd9e4c6d-6061-5bfe-b519-1debad8af0b9", "id": "CVE-2025-41234", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41234 is a false positive for org.springframework:spring-messaging 5.3.29-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6ea1022d-0f41-5f07-b966-3823e22d5fd5", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:302a7a26-df9f-5a40-85b9-bf173e9f748c", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a48dbf15-c8cf-5709-9d93-ea75615141b0", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:70e8e8ac-4762-5295-8ae7-ece6192919ca", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.29-tuxcare.4 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bbc32d65-4b42-5a8a-b627-af7fb7478790", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.29-tuxcare.4 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a68fc83d-e2d8-57b8-9946-62ea3cf334f6", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bf925859-74c3-5877-9ed8-6eb0932c712a", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.29-tuxcare.4 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f4704c90-e21b-5461-85bc-2d8dc23dac1b", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.29-tuxcare.4 of org.springframework:spring-messaging." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.29-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-messaging@5.3.29-tuxcare.4" } ] }