{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:207ede63-e644-5b2f-84a5-137e913cc4ea", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-jcl@6.1.21-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-jcl", "version": "6.1.21-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-jcl@6.1.21-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:36a72b99-7922-5128-88c7-0351fc64f5db", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 6.1.21-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@6.1.21-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:119e66d0-5f36-5a5e-a77a-72f857bd2439", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 6.1.21-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@6.1.21-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1494e360-10a3-5903-ad5e-06691d469b02", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 6.1.21-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@6.1.21-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2328d2f3-d306-5bb6-aa8e-7c144d997b1c", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 6.1.21-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@6.1.21-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:04eaa465-aedf-5ac8-86bd-fe287ea04dc3", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 6.1.21-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@6.1.21-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d0d6383e-0495-5eae-92c9-946b42849213", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 6.1.21-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@6.1.21-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f6fe087f-ce3d-5036-910f-cb48920b1261", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 6.1.21-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@6.1.21-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1b596e7b-5b6f-5fad-a18e-f71dc9629b01", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 6.1.21-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@6.1.21-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:02613510-1880-52fd-8de8-f3399373de0a", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 6.1.21-tuxcare.2 of org.springframework:spring-jcl." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-jcl@6.1.21-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-jcl@6.1.21-tuxcare.2" } ] }