{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:bdc8c201-35a4-5c8c-9e93-8a81e68871a4",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-starter-quartz@3.3.13-tuxcare.5",
      "type": "library",
      "group": "org.springframework.boot",
      "name": "spring-boot-starter-quartz",
      "version": "3.3.13-tuxcare.5",
      "purl": "pkg:maven/org.springframework.boot/spring-boot-starter-quartz@3.3.13-tuxcare.5"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:79113967-2efc-5783-9dfb-11da9f2cfb87",
      "id": "CVE-2025-22235",
      "analysis": {
        "state": "not_affected",
        "detail": "Vulnerability CVE-2025-22235 does not affect version 3.3.13-tuxcare.5 of org.springframework.boot:spring-boot-starter-quartz. This CVE was fixed in version 3.3.11 (https://security.snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORKBOOT-9804539, https://github.com/advisories/GHSA-rc42-6c7j-7h5r) so version 3.3.13 is not affected"
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-quartz@3.3.13-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:7227b11e-4959-5111-ace3-c1e148027f52",
      "id": "CVE-2026-22733",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-22733 is fixed in version 3.3.13-tuxcare.5 of org.springframework.boot:spring-boot-starter-quartz."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-quartz@3.3.13-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:4c1da2f0-b518-5c63-bd6c-9e79484cd6d5",
      "id": "CVE-2026-40972",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-40972 is fixed in version 3.3.13-tuxcare.5 of org.springframework.boot:spring-boot-starter-quartz."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-quartz@3.3.13-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:ee943c50-33a7-549a-ad10-8c6d3e0f9fb4",
      "id": "CVE-2026-40973",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-40973 is fixed in version 3.3.13-tuxcare.5 of org.springframework.boot:spring-boot-starter-quartz."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-quartz@3.3.13-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:50b55ac4-977c-5d04-a453-fa0a367e86de",
      "id": "CVE-2026-40974",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-40974 is fixed in version 3.3.13-tuxcare.5 of org.springframework.boot:spring-boot-starter-quartz."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-quartz@3.3.13-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c1cde084-b8fd-5175-a4ac-c3fca82545d6",
      "id": "CVE-2026-40975",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-40975 is fixed in version 3.3.13-tuxcare.5 of org.springframework.boot:spring-boot-starter-quartz."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-quartz@3.3.13-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f42be10c-0d2b-5db5-a35d-e15f3647b8e3",
      "id": "CVE-2026-40977",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-40977 is fixed in version 3.3.13-tuxcare.5 of org.springframework.boot:spring-boot-starter-quartz."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-quartz@3.3.13-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:6205b1fe-8bfb-5a18-9a6c-f473b49f5f22",
      "id": "CVE-2026-40992",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-40992 affects version 3.3.13-tuxcare.5 of org.springframework.boot:spring-boot-starter-quartz."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-quartz@3.3.13-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:74f2824a-385c-54e4-a77d-2489a4f39bec",
      "id": "CVE-2026-41001",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-41001 affects version 3.3.13-tuxcare.5 of org.springframework.boot:spring-boot-starter-quartz."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-quartz@3.3.13-tuxcare.5"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-quartz@3.3.13-tuxcare.5"
    }
  ]
}