{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:019f3bfc-6bbf-552b-b3b1-752dc5e8bd74", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.7.16-tuxcare.5", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-starter-data-couchbase", "version": "2.7.16-tuxcare.5", "purl": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.7.16-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:cfb0969b-c599-5405-83b4-fef5e237f501", "id": "CVE-2023-34055", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34055 is fixed in version 2.7.16-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.7.16-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d32c88fc-89c1-50f6-a998-fdbbc43dbe37", "id": "CVE-2023-38286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-38286 affects version 2.7.16-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.7.16-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:df38929c-58ed-5944-b184-db6b64e341ee", "id": "CVE-2024-38807", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38807 is fixed in version 2.7.16-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.7.16-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9a52e252-b85a-55f4-9750-e0e4eeb003f5", "id": "CVE-2025-22235", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22235 is fixed in version 2.7.16-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.7.16-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f1d5c578-77db-5a4a-af4c-d6aa396b2336", "id": "CVE-2026-22733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22733 is fixed in version 2.7.16-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.7.16-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6088ce17-3413-55e9-97fa-64c536fbe39e", "id": "CVE-2026-40972", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40972 is fixed in version 2.7.16-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.7.16-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6cd3cd19-24cf-5a1b-8828-57a2b49d6e5f", "id": "CVE-2026-40973", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40973 is fixed in version 2.7.16-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.7.16-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2c2386fd-57ad-58a5-a04f-831cff14f9ce", "id": "CVE-2026-40974", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40974 affects version 2.7.16-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.7.16-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:11c08891-d8f6-546b-9d12-8d47dab15ec2", "id": "CVE-2026-40975", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40975 is fixed in version 2.7.16-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.7.16-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:76133fc9-f3d0-5105-aebc-dee872cebe2d", "id": "CVE-2026-40977", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40977 is fixed in version 2.7.16-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.7.16-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e476c732-a31f-5c2e-917e-e3564aef5bf2", "id": "CVE-2026-40992", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40992 affects version 2.7.16-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.7.16-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f2539b2e-a856-529c-88b8-70496e73f3d9", "id": "CVE-2026-41001", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41001 affects version 2.7.16-tuxcare.5 of org.springframework.boot:spring-boot-starter-data-couchbase." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.7.16-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-couchbase@2.7.16-tuxcare.5" } ] }