{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d9ec04c8-58f8-5572-89e3-26f5bc5fd60e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-starter-integration@2.7.16-tuxcare.2", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-starter-integration", "version": "2.7.16-tuxcare.2", "purl": "pkg:maven/org.springframework.boot/spring-boot-starter-integration@2.7.16-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c3baab18-c589-5291-8bce-504ee183817f", "id": "CVE-2023-34055", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34055 is fixed in version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-integration." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-integration@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f0983de1-3314-53a0-9a82-809aa50537f3", "id": "CVE-2023-38286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-38286 affects version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-integration." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-integration@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:71022661-2fc2-58f8-bf16-a33343f3211d", "id": "CVE-2024-38807", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38807 affects version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-integration." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-integration@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a893f94d-f6db-5eb0-ad93-0ac50100ca0e", "id": "CVE-2025-22235", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22235 is fixed in version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-integration." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-integration@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d7384db8-b96e-5840-a42d-0dca21f1bf74", "id": "CVE-2026-22733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22733 is fixed in version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-integration." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-integration@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a1297ab9-1842-5cd7-9999-48a8b70a9d41", "id": "CVE-2026-40972", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-40972 is fixed in version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-integration." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-integration@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:af79a79c-3dcb-5fb5-bc1b-1c252e117032", "id": "CVE-2026-40973", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40973 affects version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-integration." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-integration@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:55e054c5-d9e6-5060-9c83-c16a69fa4ff0", "id": "CVE-2026-40974", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40974 affects version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-integration." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-integration@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3bfffe64-fb39-5231-b702-3c4c7c8acf32", "id": "CVE-2026-40975", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40975 affects version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-integration." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-integration@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b723a35f-983f-5613-97ea-4c2dc6acf362", "id": "CVE-2026-40977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40977 affects version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-integration." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-integration@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6015ed0c-38a2-5489-9aec-ffc2c36fa8c9", "id": "CVE-2026-40992", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40992 affects version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-integration." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-integration@2.7.16-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:258585be-b12b-5a57-8c0c-7b8b5dc26283", "id": "CVE-2026-41001", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41001 affects version 2.7.16-tuxcare.2 of org.springframework.boot:spring-boot-starter-integration." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-integration@2.7.16-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-integration@2.7.16-tuxcare.2" } ] }