{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f8fb46be-d39c-5bed-8dc8-3477f16ebd1e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-rest@2.7.18.tuxcare.7", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-starter-data-rest", "version": "2.7.18.tuxcare.7", "purl": "pkg:maven/org.springframework.boot/spring-boot-starter-data-rest@2.7.18.tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9b4572f1-bde6-58c0-baf6-a8430a76508d", "id": "CVE-2023-38286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-38286 affects version 2.7.18.tuxcare.7 of org.springframework.boot:spring-boot-starter-data-rest." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-rest@2.7.18.tuxcare.7" } ] }, { "bom-ref": "urn:uuid:8cef1118-0d11-5318-879c-c4b54fbfb7d0", "id": "CVE-2024-38807", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38807 is fixed in version 2.7.18.tuxcare.7 of org.springframework.boot:spring-boot-starter-data-rest." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-rest@2.7.18.tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0ffb8b58-6fe0-5559-b276-522966ef1cd6", "id": "CVE-2025-22235", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22235 is fixed in version 2.7.18.tuxcare.7 of org.springframework.boot:spring-boot-starter-data-rest." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-rest@2.7.18.tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6a889d66-1351-58df-9fbd-42d847bc2072", "id": "CVE-2026-22733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22733 affects version 2.7.18.tuxcare.7 of org.springframework.boot:spring-boot-starter-data-rest." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-rest@2.7.18.tuxcare.7" } ] }, { "bom-ref": "urn:uuid:cdf1b115-0b65-5434-9294-768d0b4d1ba4", "id": "CVE-2026-40972", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40972 affects version 2.7.18.tuxcare.7 of org.springframework.boot:spring-boot-starter-data-rest." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-rest@2.7.18.tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0c4eb4db-14b9-5549-8b1b-5997c83baec4", "id": "CVE-2026-40973", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40973 affects version 2.7.18.tuxcare.7 of org.springframework.boot:spring-boot-starter-data-rest." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-rest@2.7.18.tuxcare.7" } ] }, { "bom-ref": "urn:uuid:81ce4234-b4bf-52c2-951c-fe8fd417594d", "id": "CVE-2026-40974", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40974 affects version 2.7.18.tuxcare.7 of org.springframework.boot:spring-boot-starter-data-rest." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-rest@2.7.18.tuxcare.7" } ] }, { "bom-ref": "urn:uuid:bbd05635-d136-5a84-9c61-88ff322c16a5", "id": "CVE-2026-40975", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40975 affects version 2.7.18.tuxcare.7 of org.springframework.boot:spring-boot-starter-data-rest." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-rest@2.7.18.tuxcare.7" } ] }, { "bom-ref": "urn:uuid:dd5405c1-24cb-5bf3-bcd0-556470160f4a", "id": "CVE-2026-40977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40977 affects version 2.7.18.tuxcare.7 of org.springframework.boot:spring-boot-starter-data-rest." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-rest@2.7.18.tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-rest@2.7.18.tuxcare.7" } ] }