{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7ca26811-3dff-5d3f-969b-721327529be5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.6.15-tuxcare.5", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-starter-cache", "version": "2.6.15-tuxcare.5", "purl": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.6.15-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:475f6b24-7e22-5ec3-b385-1d5d7e8e631a", "id": "CVE-2023-34055", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34055 is fixed in version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-cache." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.6.15-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:34360228-4456-52be-8ea1-42c719609545", "id": "CVE-2024-38807", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38807 affects version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-cache." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.6.15-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0dd6c6dc-d40b-5e61-bf7e-1b6955a7ca2d", "id": "CVE-2025-22235", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22235 is fixed in version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-cache." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.6.15-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:73ba5ca5-ae98-5968-930a-d9352a270001", "id": "CVE-2026-22733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22733 affects version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-cache." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.6.15-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a2353a72-1c96-5873-aec5-83071b128bf3", "id": "CVE-2026-40972", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40972 affects version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-cache." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.6.15-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:713c57fb-24f8-59d7-aabc-97b75407a4b1", "id": "CVE-2026-40973", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40973 affects version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-cache." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.6.15-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:70c44caf-48fd-5c2c-8768-7f80b41fb5ed", "id": "CVE-2026-40974", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40974 affects version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-cache." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.6.15-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:43f4d4fe-1e46-5e2e-b786-6d2fe59eb363", "id": "CVE-2026-40975", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40975 affects version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-cache." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.6.15-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4c53d2e5-9580-5478-a8fd-b47a1985b497", "id": "CVE-2026-40977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40977 affects version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-cache." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.6.15-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@2.6.15-tuxcare.5" } ] }