{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a2214684-05d5-55b1-9462-ca52de74bc43", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.4.6-tuxcare.4", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-starter-cache", "version": "2.4.6-tuxcare.4", "purl": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.4.6-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f5cf956d-e5e4-5bd3-8632-533162e4720e", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 2.4.6-tuxcare.4 of org.springframework.boot:spring-boot-starter-cache." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.4.6-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:eb0522ea-868f-5194-bd40-0cd382a9dbb0", "id": "CVE-2023-20873", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20873 is fixed in version 2.4.6-tuxcare.4 of org.springframework.boot:spring-boot-starter-cache." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.4.6-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8a7dea58-7095-5358-9100-d6b87884f9d9", "id": "CVE-2023-20883", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20883 is fixed in version 2.4.6-tuxcare.4 of org.springframework.boot:spring-boot-starter-cache." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.4.6-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:04afd669-313e-56ce-9712-914516695fc2", "id": "CVE-2023-34055", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34055 is fixed in version 2.4.6-tuxcare.4 of org.springframework.boot:spring-boot-starter-cache." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.4.6-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:64d6060d-f356-5abb-8b17-22fc2d47344c", "id": "CVE-2023-38286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-38286 affects version 2.4.6-tuxcare.4 of org.springframework.boot:spring-boot-starter-cache." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.4.6-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f8052e5f-9c9f-515d-b811-66c4419c76e2", "id": "CVE-2024-38807", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38807 affects version 2.4.6-tuxcare.4 of org.springframework.boot:spring-boot-starter-cache." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.4.6-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8f83a000-35ff-58d1-a895-b0a039926772", "id": "CVE-2025-22235", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22235 is fixed in version 2.4.6-tuxcare.4 of org.springframework.boot:spring-boot-starter-cache." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.4.6-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:010aa49e-fbe8-599e-8ef7-275759e6dc17", "id": "CVE-2026-22733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22733 is fixed in version 2.4.6-tuxcare.4 of org.springframework.boot:spring-boot-starter-cache." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.4.6-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:419aa3b9-7bda-50e7-b8fd-786a9aad0add", "id": "CVE-2026-40972", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40972 is fixed in version 2.4.6-tuxcare.4 of org.springframework.boot:spring-boot-starter-cache." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.4.6-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6f8ec7c8-a8a5-5848-bb2e-3b914c76bec4", "id": "CVE-2026-40973", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40973 affects version 2.4.6-tuxcare.4 of org.springframework.boot:spring-boot-starter-cache." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.4.6-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:308aa034-6e53-53f3-b4d8-a58e817a62d5", "id": "CVE-2026-40974", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40974 affects version 2.4.6-tuxcare.4 of org.springframework.boot:spring-boot-starter-cache." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.4.6-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f478ecf1-c592-5807-941a-5f18c6491f45", "id": "CVE-2026-40975", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40975 is fixed in version 2.4.6-tuxcare.4 of org.springframework.boot:spring-boot-starter-cache." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.4.6-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ebd0a204-c4b8-5a96-aa81-25bb8742d2c8", "id": "CVE-2026-40977", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40977 is fixed in version 2.4.6-tuxcare.4 of org.springframework.boot:spring-boot-starter-cache." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.4.6-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:de41ba9a-d17f-5c49-bf3b-1cf62c8a6eb1", "id": "CVE-2026-40992", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40992 affects version 2.4.6-tuxcare.4 of org.springframework.boot:spring-boot-starter-cache." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.4.6-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ec0da845-2a57-578e-aa28-a21a17cc7b90", "id": "CVE-2026-41001", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41001 affects version 2.4.6-tuxcare.4 of org.springframework.boot:spring-boot-starter-cache." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.4.6-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.4.6-tuxcare.4" } ] }