{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:7b373d8b-c111-59a1-8143-7f50f1ea5562",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.4.6-tuxcare.5",
      "type": "library",
      "group": "org.springframework.boot",
      "name": "spring-boot-starter-data-couchbase",
      "version": "2.4.6-tuxcare.5",
      "purl": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.4.6-tuxcare.5"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:818c3283-e6d1-53c3-af3f-cb5093ce0100",
      "id": "CVE-2022-22965",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2022-22965 is fixed in version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.4.6-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c20b1810-1ca3-5c53-86b0-494fa3ee5c04",
      "id": "CVE-2023-20873",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2023-20873 is fixed in version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.4.6-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c8244822-ac69-5ea5-9970-5cfc894ca771",
      "id": "CVE-2023-20883",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2023-20883 is fixed in version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.4.6-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5490e784-14dc-51de-af31-c8986ab9b47f",
      "id": "CVE-2023-34055",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2023-34055 is fixed in version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.4.6-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:e4f8b4bb-00cc-58be-afe9-59bb018dccf3",
      "id": "CVE-2023-38286",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-38286 affects version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.4.6-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:fc8a503b-b261-57e1-a09a-df785726533f",
      "id": "CVE-2024-38807",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-38807 affects version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.4.6-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:0f43f3c6-021b-50df-a1a3-ab0e3a7076d5",
      "id": "CVE-2025-22235",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-22235 is fixed in version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.4.6-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:767c436f-acc8-5c15-861f-899747202042",
      "id": "CVE-2026-22733",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-22733 is fixed in version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.4.6-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:999022e4-53ca-558f-b610-5a7a54f0ca91",
      "id": "CVE-2026-40972",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-40972 is fixed in version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.4.6-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:a05fa9ba-53b6-5396-9395-4925b932841a",
      "id": "CVE-2026-40973",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-40973 is fixed in version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.4.6-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:d32c23d4-3eb2-5cec-bda5-7fa325bc7a90",
      "id": "CVE-2026-40974",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-40974 is fixed in version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.4.6-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:35b6c5c0-b42d-5f79-bcd1-afd5be428ddc",
      "id": "CVE-2026-40975",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-40975 is fixed in version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.4.6-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5f21fa4e-814d-50bd-acda-33f5dce73208",
      "id": "CVE-2026-40977",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-40977 is fixed in version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.4.6-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:7d21bcd1-fd19-5676-8c62-2377ad1d4ed0",
      "id": "CVE-2026-40992",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-40992 affects version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.4.6-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:8b6d8e14-b157-5829-a4bb-38eee4a2182d",
      "id": "CVE-2026-41001",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-41001 affects version 2.4.6-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.4.6-tuxcare.5"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.4.6-tuxcare.5"
    }
  ]
}