{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ba9a1778-472e-55be-a493-1aac3e51aa7c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-jdbc", "version": "5.3.25-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3de78bbd-f7cf-5e5c-8af4-17786936406f", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3472ab03-cdfb-573a-a31e-9a3ac24eac06", "id": "CVE-2023-20860", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20860 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4946f580-cb00-5b87-9974-42197620074d", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef083b75-d528-5ef8-9487-5cbf57fbbc22", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:50d1ab74-c458-507d-afd1-a52889a65825", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b381621f-c7f1-5f2b-b401-527465856d97", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3f4e9ed0-c95e-5df5-ad32-36ed22b95e1a", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3b142e06-6704-57c6-add2-a6acb9485042", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7179a903-864f-5167-aa7c-d6c269a5b815", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a22956f2-6376-5586-ab71-cc7f4190e50c", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:68e5ea5e-0731-55b8-a5d7-142108a616fb", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ceefd41f-a67f-5d55-8bce-24ee552d985a", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ca9ca16-6f59-5b11-85c4-358ac1e16cf5", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:753d7eb3-1bfe-575a-a950-f29a4d7fd126", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4c30f37a-47f9-5595-bfa9-77bc47f2c285", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:58c67467-5be8-500c-a0c4-dfa2ef2aa82e", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a45518a2-9edf-5897-bb02-1198fc18c7b7", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:102dad5d-4788-5f42-b5f1-39c1de8c8cb1", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:91327360-28d6-5fcc-a98e-39877202fc69", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f75ef88e-156a-537d-99cc-d828422a7f39", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d19d8d9-8d37-59bf-ae44-3924404303c6", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d2aac8b0-752e-5bfe-bf91-6df5245bcd1b", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:57db66af-7ba2-5c16-95e8-0b3753d5cc88", "id": "CVE-2026-41838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41838 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ee7f5733-027d-594b-9bde-593b8ec10d0d", "id": "CVE-2026-41839", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41839 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:25f7e619-9dae-58c5-a6bb-33766de5d2b0", "id": "CVE-2026-41840", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41840 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd51a283-3970-5a02-902d-3771b68d1467", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:72de4199-c583-53e9-bda3-8b10e62ac88b", "id": "CVE-2026-41842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41842 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ab587b4d-e053-5f6b-ae69-1a4c725188ef", "id": "CVE-2026-41843", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41843 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e43a4578-b107-5fc9-9c9f-502944cf571a", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4d291d82-1fba-53e4-81e4-4b205f1c04eb", "id": "CVE-2026-41845", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41845 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c26c24a8-052f-5a3b-890f-4153468f400e", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:34baacb7-4663-5877-925e-9f159fd0b32a", "id": "CVE-2026-41847", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41847 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:12b59a69-9f8c-5bfe-a282-1908c6c7c8b3", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1a604652-0a19-58ed-8d1f-b5859c58fea8", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd1b6bac-dbb7-57fb-b11a-8f7131be6ecc", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bc6cd720-9d36-5c78-b94e-5346fccdd4bf", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8009ba7b-38b4-5e1e-a7f1-e81155b3c0e8", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4b232f71-691f-5f12-b3b0-d0d2ef5c5bb0", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d3bfa1d5-7a25-50ce-8d6b-2d71262f66d0", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 5.3.25-tuxcare.1 of org.springframework:spring-jdbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jdbc@5.3.25-tuxcare.1" } ] }