{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ca2a96f6-ec85-5ff7-9a0f-7fa3cb3fae0a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-tx@5.3.29-tuxcare.4", "type": "library", "group": "org.springframework", "name": "spring-tx", "version": "5.3.29-tuxcare.4", "purl": "pkg:maven/org.springframework/spring-tx@5.3.29-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:080f3abb-425d-5253-8298-2c0604491018", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.29-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:aa6f49d5-05e1-5a9f-88da-c604f01dae73", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7451ff5d-2032-5109-a147-affccee39f9e", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:279916a6-d6b1-5738-9328-bc53d50c3852", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c6958f57-a4ac-597e-bde0-6094e7715df7", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3a5cf287-665d-5f56-9c62-39eaaece8756", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:64ac69cc-750b-5747-93e1-75b4bf7f0263", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c9ce1b80-ed96-5752-bba7-598588aa2c5e", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:167bc8c9-1a0a-5ad0-8663-b56ddf114a8e", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:01c60342-0741-5185-af0d-f3fdf28fc2b8", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:26d4f3eb-7228-5ce2-a783-1b40539893d2", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:df1acf22-bc42-5703-9520-149c3b73a96d", "id": "CVE-2025-41234", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41234 is a false positive for org.springframework:spring-tx 5.3.29-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:28cc41de-ebdf-51a6-a61e-199b83b4a703", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0548b977-bea3-5245-9b97-9cc8cfb91dc2", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:84d4321a-4ce2-54c6-a925-ce53de8d5727", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2a462a07-8a74-5492-97e3-d32f76aae539", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.29-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c9b3edff-9deb-5131-aeba-ec74c76208f6", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.29-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:82eb12ca-da7a-5319-bca0-a7e307ce203d", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 5.3.29-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:002c5e3c-5ae1-55fb-b2c0-0d8d458c2903", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.29-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.29-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e0667f1a-f358-569c-bc89-1a7de9c3efc0", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.29-tuxcare.4 of org.springframework:spring-tx." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.29-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-tx@5.3.29-tuxcare.4" } ] }