{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:bcd97530-bbf3-5988-94fd-fe3d12927db1", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-starter-groovy-templates@2.7.16-tuxcare.4", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-starter-groovy-templates", "version": "2.7.16-tuxcare.4", "purl": "pkg:maven/org.springframework.boot/spring-boot-starter-groovy-templates@2.7.16-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f889898a-0e2b-56b2-b43b-710094ecd8f1", "id": "CVE-2023-34055", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34055 is fixed in version 2.7.16-tuxcare.4 of org.springframework.boot:spring-boot-starter-groovy-templates." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-groovy-templates@2.7.16-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:63a925ae-d91e-5148-aac6-561520727bb2", "id": "CVE-2023-38286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-38286 affects version 2.7.16-tuxcare.4 of org.springframework.boot:spring-boot-starter-groovy-templates." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-groovy-templates@2.7.16-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b33f7929-57f5-5a40-b321-b6076c4bc83c", "id": "CVE-2024-38807", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38807 affects version 2.7.16-tuxcare.4 of org.springframework.boot:spring-boot-starter-groovy-templates." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-groovy-templates@2.7.16-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9dad35ed-8086-547f-aa15-04b3efd9d8ff", "id": "CVE-2025-22235", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22235 is fixed in version 2.7.16-tuxcare.4 of org.springframework.boot:spring-boot-starter-groovy-templates." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-groovy-templates@2.7.16-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8d99cef6-84d1-559c-bedd-6d542f8a71e2", "id": "CVE-2026-22733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22733 is fixed in version 2.7.16-tuxcare.4 of org.springframework.boot:spring-boot-starter-groovy-templates." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-groovy-templates@2.7.16-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6dbdae1a-4a53-5904-bd67-f69ccb9b7a9b", "id": "CVE-2026-40972", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40972 is fixed in version 2.7.16-tuxcare.4 of org.springframework.boot:spring-boot-starter-groovy-templates." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-groovy-templates@2.7.16-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e34e9b71-3d78-5ffd-b711-7d82e76c2607", "id": "CVE-2026-40973", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40973 is fixed in version 2.7.16-tuxcare.4 of org.springframework.boot:spring-boot-starter-groovy-templates." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-groovy-templates@2.7.16-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3b0fd7ac-5bc7-5303-b351-a4294e37d9c0", "id": "CVE-2026-40974", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40974 affects version 2.7.16-tuxcare.4 of org.springframework.boot:spring-boot-starter-groovy-templates." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-groovy-templates@2.7.16-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:83ae8b29-b6ea-54a1-98f5-323d49e1a00b", "id": "CVE-2026-40975", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40975 is fixed in version 2.7.16-tuxcare.4 of org.springframework.boot:spring-boot-starter-groovy-templates." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-groovy-templates@2.7.16-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1d35c96c-2178-5635-9bde-c65d1d8502c9", "id": "CVE-2026-40977", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40977 is fixed in version 2.7.16-tuxcare.4 of org.springframework.boot:spring-boot-starter-groovy-templates." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-groovy-templates@2.7.16-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:519fe4d3-9640-502f-91fd-e31143f8d6d7", "id": "CVE-2026-40992", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40992 affects version 2.7.16-tuxcare.4 of org.springframework.boot:spring-boot-starter-groovy-templates." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-groovy-templates@2.7.16-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a04c4069-230a-5b55-9952-e2b8c7346edc", "id": "CVE-2026-41001", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41001 affects version 2.7.16-tuxcare.4 of org.springframework.boot:spring-boot-starter-groovy-templates." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-groovy-templates@2.7.16-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-groovy-templates@2.7.16-tuxcare.4" } ] }