{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b85be032-5619-5dca-bda1-2d7d66ba965d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.4", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-starter-amqp", "version": "2.7.16-tuxcare.4", "purl": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:07ceb70b-0df8-5198-8cb2-30cba127cb3b", "id": "CVE-2023-34055", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34055 is fixed in version 2.7.16-tuxcare.4 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0cb255bd-f5d0-50c7-8a11-bae67f7795c3", "id": "CVE-2023-38286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-38286 affects version 2.7.16-tuxcare.4 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:223c6589-d9df-5c2b-a503-09c023a0db62", "id": "CVE-2024-38807", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38807 affects version 2.7.16-tuxcare.4 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d556d2e5-72bc-5fc7-bf54-f7aec2accc16", "id": "CVE-2025-22235", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22235 is fixed in version 2.7.16-tuxcare.4 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:53d924de-b987-5950-89e3-128df12deb21", "id": "CVE-2026-22733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22733 is fixed in version 2.7.16-tuxcare.4 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:aa8af0e4-564c-54ed-a7d5-e9ef9bfed00c", "id": "CVE-2026-40972", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40972 is fixed in version 2.7.16-tuxcare.4 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5a022d9a-59a0-5122-93ae-65b718519837", "id": "CVE-2026-40973", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40973 is fixed in version 2.7.16-tuxcare.4 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:71487dc3-cd32-5e32-a676-5d6f71d3e139", "id": "CVE-2026-40974", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40974 affects version 2.7.16-tuxcare.4 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:edcdaa6f-0e78-591c-8765-c91d25086261", "id": "CVE-2026-40975", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40975 is fixed in version 2.7.16-tuxcare.4 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0997832a-80eb-5af7-94a2-8bfebfc51a03", "id": "CVE-2026-40977", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40977 is fixed in version 2.7.16-tuxcare.4 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bad95784-7bfb-5c8b-bc4c-b34956639a02", "id": "CVE-2026-40992", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40992 affects version 2.7.16-tuxcare.4 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d66ad1d2-57f5-5fc8-b9b3-307bf928936c", "id": "CVE-2026-41001", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41001 affects version 2.7.16-tuxcare.4 of org.springframework.boot:spring-boot-starter-amqp." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-amqp@2.7.16-tuxcare.4" } ] }