{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:42203d72-a96f-5c5b-be96-26d5654b59bc", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-starter-jersey@2.6.15-tuxcare.5", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-starter-jersey", "version": "2.6.15-tuxcare.5", "purl": "pkg:maven/org.springframework.boot/spring-boot-starter-jersey@2.6.15-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b68d708b-d041-5e4f-9438-28923c618794", "id": "CVE-2023-34055", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34055 is fixed in version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-jersey." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-jersey@2.6.15-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6adaaac7-1176-54d8-a236-1e7883cab177", "id": "CVE-2024-38807", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38807 affects version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-jersey." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-jersey@2.6.15-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:aa72e7a1-784b-52cd-b0db-7705f2708321", "id": "CVE-2025-22235", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22235 is fixed in version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-jersey." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-jersey@2.6.15-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:74ad5977-81a5-5795-87a8-1c2e5c4bb824", "id": "CVE-2026-22733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22733 affects version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-jersey." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-jersey@2.6.15-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ec2ad684-236a-53e1-b16a-cd2b754d6b7a", "id": "CVE-2026-40972", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40972 affects version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-jersey." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-jersey@2.6.15-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d9646071-66f5-565f-a67d-9a96da765e5f", "id": "CVE-2026-40973", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40973 affects version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-jersey." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-jersey@2.6.15-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7ee4c83f-dbd8-5d97-9b22-d94908287952", "id": "CVE-2026-40974", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40974 affects version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-jersey." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-jersey@2.6.15-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:464eef53-de62-5055-adae-6c98ff930076", "id": "CVE-2026-40975", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40975 affects version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-jersey." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-jersey@2.6.15-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9e5f400a-8e0e-557e-8947-6fea88508cfc", "id": "CVE-2026-40977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40977 affects version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-jersey." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-jersey@2.6.15-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-jersey@2.6.15-tuxcare.5" } ] }