{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:517a90fd-fa52-50e9-a606-ca785f9a1736", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-starter-batch@2.7.16-tuxcare.2", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-starter-batch", "version": "2.7.16-tuxcare.2", "purl": "pkg:maven/org.springframework.boot/spring-boot-starter-batch@2.7.16-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:18473ac9-438d-559d-903a-7e48b9098730", "id": "CVE-2023-34055", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34055 is fixed in version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-batch." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-batch@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e4595fb1-f821-5307-9c6e-a03f4b94dcc5", "id": "CVE-2023-38286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-38286 affects version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-batch." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-batch@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0760149b-a6bb-5472-814b-e13c654556a7", "id": "CVE-2024-38807", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38807 affects version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-batch." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-batch@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0e82c6c2-7a83-56a1-a999-ed2bf13a8f93", "id": "CVE-2025-22235", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22235 is fixed in version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-batch." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-batch@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a2767c63-9dd8-5790-895f-22b184a7623c", "id": "CVE-2026-22733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22733 is fixed in version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-batch." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-batch@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b4a1c8f3-0c96-5413-8797-1ed8ce715854", "id": "CVE-2026-40972", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40972 is fixed in version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-batch." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-batch@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cec5848b-0445-5030-9378-5b7ee972b3ef", "id": "CVE-2026-40973", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40973 affects version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-batch." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-batch@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f815d4cf-6d0c-5808-8532-1bbf44ece9a7", "id": "CVE-2026-40974", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40974 affects version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-batch." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-batch@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eebbc21b-fbb3-5af5-bdea-389d906edc51", "id": "CVE-2026-40975", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40975 affects version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-batch." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-batch@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:018e9cfc-8ff2-5d49-a7a5-ca266867faa5", "id": "CVE-2026-40977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40977 affects version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-batch." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-batch@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1b5c1d31-de2d-5fcc-8d65-4961dd64a26b", "id": "CVE-2026-40992", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40992 affects version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-batch." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-batch@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a22868db-d94c-56e0-880d-c2f9d8026799", "id": "CVE-2026-41001", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41001 affects version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-batch." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-batch@2.7.16-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-batch@2.7.16-tuxcare.2" } ] }