{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:bc67a643-cd78-5a99-89d9-f6590e569d83", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.3", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-starter-amqp", "version": "2.7.16-tuxcare.3", "purl": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a43b3060-1019-543a-9b91-08e2fb8c0697", "id": "CVE-2023-34055", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34055 is fixed in version 2.7.16-tuxcare.3 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:905d098f-d3c2-5f92-9799-e4001c16785e", "id": "CVE-2023-38286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-38286 affects version 2.7.16-tuxcare.3 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7fe5093f-5d33-5a09-bdd4-eab0029f7dee", "id": "CVE-2024-38807", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38807 affects version 2.7.16-tuxcare.3 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1460630c-4495-5942-9cd6-05038becbc65", "id": "CVE-2025-22235", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22235 is fixed in version 2.7.16-tuxcare.3 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:efd8c6ed-bc8c-50ce-a0a2-ccab414eeff2", "id": "CVE-2026-22733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22733 is fixed in version 2.7.16-tuxcare.3 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c3de5166-e973-5530-8721-e7d7796f946f", "id": "CVE-2026-40972", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40972 is fixed in version 2.7.16-tuxcare.3 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fdc0d82b-1080-5514-9054-58cbc1500167", "id": "CVE-2026-40973", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40973 is fixed in version 2.7.16-tuxcare.3 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:82da6399-524f-5257-895d-7909fcd709e8", "id": "CVE-2026-40974", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40974 affects version 2.7.16-tuxcare.3 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:42afd88c-6540-5549-8bba-ecc06aae2013", "id": "CVE-2026-40975", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40975 affects version 2.7.16-tuxcare.3 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:def754e0-228c-5dc4-8332-f3613661054e", "id": "CVE-2026-40977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40977 affects version 2.7.16-tuxcare.3 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f59898ef-cd8a-5b31-96e1-434902b775c2", "id": "CVE-2026-40992", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40992 affects version 2.7.16-tuxcare.3 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:675eef29-801d-5697-993e-e8cdbc337f40", "id": "CVE-2026-41001", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41001 affects version 2.7.16-tuxcare.3 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.3" } ] }