{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6d2c0547-a42c-52dd-8839-2c1ce7e2ecd9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-oxm", "version": "3.0.5.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d04e0f8e-29f2-5115-be80-cd0b146abb5c", "id": "CVE-2011-2730", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2730 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:48523818-b3d1-54a5-ac35-454a4202026e", "id": "CVE-2011-2894", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-2894 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c8ae8655-c23c-56c7-9973-d048a926f48f", "id": "CVE-2013-4152", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4152 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e045f77b-b3a1-5183-905d-a920b0a32045", "id": "CVE-2013-6429", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6429 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7447a879-5714-516c-9898-209718b48c59", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d3a2207d-e926-56df-99d1-0991dc631b07", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:807f663d-f914-5cb1-9251-b408aabd7704", "id": "CVE-2014-0054", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0054 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6fe12cba-ac2f-501f-872e-abef33ef5320", "id": "CVE-2014-0225", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0225 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:00e68bbc-4c6f-5b88-97f7-8ce7b298a135", "id": "CVE-2014-1904", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-1904 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a27f326f-984c-55dc-9296-7d7ec559962d", "id": "CVE-2014-3578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-3578 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d7eadaae-5a5c-503b-9df4-dd86dcfab75c", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f3fcffcd-9a61-5888-9082-6740b9026e42", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f0e8039d-4467-5a54-b727-f971c599f4a7", "id": "CVE-2015-5211", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5211 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5fc27f44-9f35-5e42-9255-f125b7c9c75c", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:441a0398-dca9-5716-aa96-7a46a582359b", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:46bd5a21-4037-5612-806f-9da036c2d70c", "id": "CVE-2016-9878", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-9878 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4168f311-fbc4-558f-acb6-71a151659384", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:90d8f38a-1507-5bf7-bb88-2c7e74057958", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7a2311be-e8c9-5285-a177-05778b437c7a", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b462fbd6-6a26-583f-a5e4-0b9ae7705fe9", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7244809f-b66c-57fe-9e74-801578acd252", "id": "CVE-2018-1271", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1271 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d2c48d25-44ec-58be-b900-8ff478375b23", "id": "CVE-2018-1272", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1272 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b1363659-386b-588e-9d82-9cafee9cf84d", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ee08e642-5ce9-52cd-aa31-ea5a1583fa31", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5d7163b8-eb92-5796-b40e-bf5fe9abd45c", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4dc7b257-4ccc-54be-94e6-36278e63374a", "id": "CVE-2022-22950", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22950 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2bd149ec-1173-5c8e-bee5-3e29dee6eaf3", "id": "CVE-2022-22965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22965 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4196b84d-3f24-54d7-806b-506a03902833", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:71c832d6-0cfd-5908-8c3a-64f063695f2c", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f141559b-fe36-5788-b262-e5740ee0b5d1", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a194cf63-83b2-5717-bf93-5936637a6b4e", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b6d0a93-c79c-5c2f-a319-1fc85da07bff", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bbab866f-a446-59dc-8f24-a8e333527f40", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:69411521-ab3d-5f87-9393-dda3e99e0391", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:39fd69b5-95c8-5e76-8f3c-cd577d8f9b9d", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d7f9b165-ada9-5b58-afae-c364dac6187f", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5cbaa260-e4ee-5df8-a6f6-378d3dbd338a", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aad13efd-ee86-531d-81bb-d5ad9db87fcd", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c3638526-99e6-5eaf-8de9-e55bbf528513", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e51d904f-2742-50bc-8a1b-6074b7fe5231", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 3.0.5.RELEASE-tuxcare.1 of org.springframework:spring-oxm." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-oxm@3.0.5.RELEASE-tuxcare.1" } ] }