{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:cd5ec360-1386-5749-9d08-437b09a6ded8", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase-reactive@2.4.6-tuxcare.3", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-starter-data-couchbase-reactive", "version": "2.4.6-tuxcare.3", "purl": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase-reactive@2.4.6-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9ce4d1ba-e908-5f71-8ae6-6dfd3ce06500", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-starter-data-couchbase-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase-reactive@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e8c0daa9-a470-5e21-bc8f-e647d5f3fa43", "id": "CVE-2023-20873", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20873 is fixed in version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-starter-data-couchbase-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase-reactive@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:075d159c-6818-5475-823f-d483a47c0daa", "id": "CVE-2023-20883", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20883 is fixed in version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-starter-data-couchbase-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase-reactive@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3d860c25-4775-54a3-b3ee-0376ff649454", "id": "CVE-2023-34055", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34055 is fixed in version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-starter-data-couchbase-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase-reactive@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2b0d5476-28e9-534c-a434-1552b7dd33ce", "id": "CVE-2023-38286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-38286 affects version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-starter-data-couchbase-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase-reactive@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:faceabbf-6dc2-5e48-8082-fb60fad82857", "id": "CVE-2024-38807", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38807 affects version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-starter-data-couchbase-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase-reactive@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f963905e-fa8c-5ce3-9b7b-5e338f2eb6d5", "id": "CVE-2025-22235", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22235 is fixed in version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-starter-data-couchbase-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase-reactive@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9d231169-05dd-59f2-a8e1-6c397f8f5e8b", "id": "CVE-2026-22733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22733 affects version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-starter-data-couchbase-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase-reactive@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c477ee8f-9bc1-53da-9ef4-d8176216f441", "id": "CVE-2026-40972", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40972 affects version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-starter-data-couchbase-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase-reactive@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:264d9331-603a-539f-956d-d18da0447d0a", "id": "CVE-2026-40973", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40973 affects version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-starter-data-couchbase-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase-reactive@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:038eb981-ab48-55ed-9ad8-da2eb13a272e", "id": "CVE-2026-40974", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40974 affects version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-starter-data-couchbase-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase-reactive@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a0d32c27-1261-5409-ae0f-a4a8aba75645", "id": "CVE-2026-40975", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40975 affects version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-starter-data-couchbase-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase-reactive@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2b27959c-4b4c-53da-ac1e-0cc2cbb71bf2", "id": "CVE-2026-40977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40977 affects version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-starter-data-couchbase-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase-reactive@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:12a47d89-bfa3-515e-8018-fdadb01aa4f9", "id": "CVE-2026-40992", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40992 affects version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-starter-data-couchbase-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase-reactive@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a63d01af-5a6c-50d0-a9c9-076299504381", "id": "CVE-2026-41001", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41001 affects version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-starter-data-couchbase-reactive." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase-reactive@2.4.6-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase-reactive@2.4.6-tuxcare.3" } ] }