{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:99ad65f3-6a4c-54c7-a189-172bbc507deb", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.2", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-starter-amqp", "version": "2.7.16-tuxcare.2", "purl": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e612f14b-c70d-5af2-ad8e-297a368aaf6d", "id": "CVE-2023-34055", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34055 is fixed in version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4d028689-391b-54ce-bf5c-f8affbf0714e", "id": "CVE-2023-38286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-38286 affects version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7a844461-8196-5d79-bc31-671d4a05fef8", "id": "CVE-2024-38807", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38807 affects version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a56081bd-8d3a-5f24-820a-e3e29bb6d80b", "id": "CVE-2025-22235", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22235 is fixed in version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1cdf03d3-b119-5549-b516-cfc54d5d02ff", "id": "CVE-2026-22733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22733 is fixed in version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:73de673f-a4cd-5546-9645-97af3c6d5c69", "id": "CVE-2026-40972", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40972 is fixed in version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5b1159c0-2fd8-5a5c-810e-a992658d6695", "id": "CVE-2026-40973", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40973 affects version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7502258a-6ced-5dc6-9dad-dfbb7de00337", "id": "CVE-2026-40974", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40974 affects version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9af9674a-a954-5004-bb92-e65df9383cc2", "id": "CVE-2026-40975", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40975 affects version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2ebae57e-dfcf-5ed5-8fc9-35002ee13e05", "id": "CVE-2026-40977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40977 affects version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8dfa554e-fc3e-57e9-be01-30958a41fd1b", "id": "CVE-2026-40992", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40992 affects version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4f5d756e-b6c7-512a-b06e-dbfed0fb2c70", "id": "CVE-2026-41001", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41001 affects version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.2" } ] }