{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1b8f7dca-631f-59ea-be6b-5307cdd2758e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.7.16-tuxcare.3", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-starter-hateoas", "version": "2.7.16-tuxcare.3", "purl": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.7.16-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:456cf5b1-2c63-5eab-bd79-cc13e817152c", "id": "CVE-2023-34055", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34055 is fixed in version 2.7.16-tuxcare.3 of org.springframework.boot:spring-boot-starter-hateoas." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.7.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aa1e5314-943e-51d7-a1f9-1640a8f0d554", "id": "CVE-2023-38286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-38286 affects version 2.7.16-tuxcare.3 of org.springframework.boot:spring-boot-starter-hateoas." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.7.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5d12e8bc-ae11-5144-870b-8ba593ab27c3", "id": "CVE-2024-38807", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38807 affects version 2.7.16-tuxcare.3 of org.springframework.boot:spring-boot-starter-hateoas." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.7.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4ffd1129-283f-56b8-a4b4-a53d8fd469f9", "id": "CVE-2025-22235", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22235 is fixed in version 2.7.16-tuxcare.3 of org.springframework.boot:spring-boot-starter-hateoas." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.7.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:46c15261-a4bf-541a-8bef-17c33559d84f", "id": "CVE-2026-22733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22733 is fixed in version 2.7.16-tuxcare.3 of org.springframework.boot:spring-boot-starter-hateoas." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.7.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ebff6a36-8d5e-5e46-b02e-898e13237c4f", "id": "CVE-2026-40972", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40972 is fixed in version 2.7.16-tuxcare.3 of org.springframework.boot:spring-boot-starter-hateoas." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.7.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c58456ad-c525-5311-8108-458752c3d855", "id": "CVE-2026-40973", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40973 is fixed in version 2.7.16-tuxcare.3 of org.springframework.boot:spring-boot-starter-hateoas." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.7.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6e7e80bd-d17b-53e9-a0ca-aa18d0253b15", "id": "CVE-2026-40974", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40974 affects version 2.7.16-tuxcare.3 of org.springframework.boot:spring-boot-starter-hateoas." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.7.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:267528db-d34e-51e8-a8f7-eeeb62a4d141", "id": "CVE-2026-40975", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40975 affects version 2.7.16-tuxcare.3 of org.springframework.boot:spring-boot-starter-hateoas." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.7.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d9b5f0f2-c5db-5feb-b817-e3528c3a9e86", "id": "CVE-2026-40977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40977 affects version 2.7.16-tuxcare.3 of org.springframework.boot:spring-boot-starter-hateoas." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.7.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b06151cb-8722-5a56-9219-d2e13508b301", "id": "CVE-2026-40992", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40992 affects version 2.7.16-tuxcare.3 of org.springframework.boot:spring-boot-starter-hateoas." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.7.16-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b11f6b09-53f0-5a0f-a52a-5333445e4d8d", "id": "CVE-2026-41001", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41001 affects version 2.7.16-tuxcare.3 of org.springframework.boot:spring-boot-starter-hateoas." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.7.16-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.7.16-tuxcare.3" } ] }