{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:41321f38-aa0d-5afb-b791-edbb979152c7", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra-reactive@2.4.6-tuxcare.5", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-starter-data-cassandra-reactive", "version": "2.4.6-tuxcare.5", "purl": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra-reactive@2.4.6-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:83b41e5a-580b-5b6f-af90-f71f557509be", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-cassandra-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra-reactive@2.4.6-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b8ad0f35-5f78-5dfd-bca8-808bb2e61a72", "id": "CVE-2023-20873", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20873 is fixed in version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-cassandra-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra-reactive@2.4.6-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:75946f6a-cbb4-58e6-865f-a862d46320b3", "id": "CVE-2023-20883", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20883 is fixed in version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-cassandra-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra-reactive@2.4.6-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c3ec8a7a-321f-5349-af58-e0063ea950da", "id": "CVE-2023-34055", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34055 is fixed in version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-cassandra-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra-reactive@2.4.6-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c694fef5-28bd-5c56-8931-0124590160a0", "id": "CVE-2023-38286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-38286 affects version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-cassandra-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra-reactive@2.4.6-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:96e5b68b-3b05-539e-bee8-93428f504800", "id": "CVE-2024-38807", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38807 affects version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-cassandra-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra-reactive@2.4.6-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f68bdb71-065e-5305-aacb-24d3e14a9a3a", "id": "CVE-2025-22235", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22235 is fixed in version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-cassandra-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra-reactive@2.4.6-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ee336aea-86c8-5190-a71d-373055e8a279", "id": "CVE-2026-22733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22733 is fixed in version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-cassandra-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra-reactive@2.4.6-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1a65e3c4-6780-5025-90e2-55b0205785d4", "id": "CVE-2026-40972", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40972 is fixed in version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-cassandra-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra-reactive@2.4.6-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2e1e0261-05e3-5552-a0fe-490e194af097", "id": "CVE-2026-40973", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40973 is fixed in version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-cassandra-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra-reactive@2.4.6-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6a382419-4a65-5529-b7c4-4e82441939bd", "id": "CVE-2026-40974", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40974 is fixed in version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-cassandra-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra-reactive@2.4.6-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:17a1cc69-2e34-551b-9bf8-83485a504aa3", "id": "CVE-2026-40975", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40975 is fixed in version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-cassandra-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra-reactive@2.4.6-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c102920d-4902-5e08-a1a1-d569c5977999", "id": "CVE-2026-40977", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40977 is fixed in version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-cassandra-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra-reactive@2.4.6-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9fc385a3-266f-5d30-9e43-1cbc388f1447", "id": "CVE-2026-40992", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40992 affects version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-cassandra-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra-reactive@2.4.6-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1b07ab33-86a3-554d-85c4-cb6a3cddeeac", "id": "CVE-2026-41001", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41001 affects version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-cassandra-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra-reactive@2.4.6-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra-reactive@2.4.6-tuxcare.5" } ] }