{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9df65d8e-230e-577b-bbbc-b479a48bcb97", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-r2dbc", "version": "5.3.25-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:65e3a508-4a7e-5c39-89c3-7d3e0294bba1", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:310dc336-9b3e-5f6c-8a13-2b442f630d22", "id": "CVE-2023-20860", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20860 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1308d894-8452-5774-883c-310e81a59253", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2699c5a2-52b5-55be-ab80-d044035313a0", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e09107f4-4b26-5b62-88c4-aa26c06825cb", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f8699a2-7fee-50ab-96d8-d7843326bf6a", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e6192af2-b07c-51a5-9b25-597efca92e3b", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1e2b8050-ba3a-5b5d-bc44-150440c92022", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5e9b2198-921f-59da-8406-c8e000cd9b5a", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:74a99af4-f28f-583c-8b53-9acd0bd538a6", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bf68002b-d16f-5d2a-9a78-7652e2926ed8", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bd6eff5d-6167-5b56-8fe1-8e5ba26a205d", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:29cb3984-c253-5bd6-8cb2-714de239372b", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:40f2f322-4c57-5446-8f7a-f6b12ff3803e", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:60d23997-c823-5dbb-af99-a2fc521f60a2", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7a592ac3-72a0-5cd8-ac0c-e23eb597ad15", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bc3c01f2-4edb-5ceb-ac0f-7241a053325b", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:05f2bd5d-eb17-5940-843b-c8ac89c83927", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dddc71ee-150a-5c84-bf18-e7d385511b97", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:92a06a39-0d3c-5f32-862a-bfc31c337e72", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:deb8235a-6e70-5a1d-bfbb-cf8c50ac5964", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9333768e-8d3f-58dd-9f2c-23ce3ffb5611", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3eeb64c4-399e-55ef-bcf5-11a2098f8587", "id": "CVE-2026-41838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41838 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:753c925b-7666-57a2-93a4-6b573a677e5a", "id": "CVE-2026-41839", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41839 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c49cfa3f-e801-5054-9962-292b5d362356", "id": "CVE-2026-41840", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41840 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7662522b-ef2b-50a6-8f3e-1c715eff7ae0", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ac70f15a-7d35-5ce1-8d1f-2bb2ee21785a", "id": "CVE-2026-41842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41842 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f6687883-5ef9-58db-81ed-b82b8dcbad90", "id": "CVE-2026-41843", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41843 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:64a28cff-217f-5bd8-afc4-1bb9ad9eabde", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4e42550a-fef0-5593-b4bd-7f4055d83705", "id": "CVE-2026-41845", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41845 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e2ee01af-13cb-5476-9659-27c07a9324d9", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b1e3cd1-082b-5612-b82d-a2800e4644cd", "id": "CVE-2026-41847", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41847 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ad890a65-6a67-5b24-b3b3-84af98522761", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:28006b65-41c0-5ecf-9bbf-765a89d33108", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a73f7e00-2c3a-5a8e-ac4a-db2e60d334db", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a5025846-b5c4-5ae9-843e-48e5c7157e53", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4ea8e503-1082-5d67-977f-9aae406f5586", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a79f46dd-127b-5e86-8d1b-ba66dc807afc", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4f546df-2531-5d13-845e-cbf2bffe0102", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 5.3.25-tuxcare.1 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@5.3.25-tuxcare.1" } ] }