{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:043e47f5-3283-572a-9ca6-eec2f45cd58d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.4.6-tuxcare.3", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-test", "version": "2.4.6-tuxcare.3", "purl": "pkg:maven/org.springframework.boot/spring-boot-test@2.4.6-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9515810c-c0c2-5deb-8b5e-3c129d6a7a38", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0345d9c4-8952-5ff9-8a21-69ba3eb182f1", "id": "CVE-2023-20873", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20873 is fixed in version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:afb996c1-ad65-5a87-b386-ae2b3daca31f", "id": "CVE-2023-20883", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20883 is fixed in version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d041a173-3f7e-5360-9e25-2f90724912ea", "id": "CVE-2023-34055", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34055 is fixed in version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:84a9f299-f69b-530c-93d5-be66cd601d9b", "id": "CVE-2023-38286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-38286 affects version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e38115b8-f1de-52b6-afb3-a1529fd02c10", "id": "CVE-2024-38807", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38807 affects version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b936d051-1648-5bdf-b61f-3843891ad0c5", "id": "CVE-2025-22235", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22235 is fixed in version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1af5871b-096d-5c6f-8dc2-6ee2a0b0b27c", "id": "CVE-2026-22733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22733 affects version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:08ac4328-192f-5ff6-87de-8bd47155af44", "id": "CVE-2026-40972", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40972 affects version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ed9a727b-cb92-595d-b24a-d46e4d9af411", "id": "CVE-2026-40973", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40973 affects version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ea116c15-1a65-5b0e-bd03-e95860f45fd0", "id": "CVE-2026-40974", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40974 affects version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:14c07b15-e22c-5a1f-b0f4-b621c1674316", "id": "CVE-2026-40975", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40975 affects version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:078d5795-b136-5eb3-b17f-4c44816ff824", "id": "CVE-2026-40977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40977 affects version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:02250e47-0ed8-596b-a4ab-a01d782d6a7e", "id": "CVE-2026-40992", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40992 affects version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.4.6-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b7124d62-6da1-522d-bd9c-51927efe6f5f", "id": "CVE-2026-41001", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41001 affects version 2.4.6-tuxcare.3 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.4.6-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.4.6-tuxcare.3" } ] }