{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:fcf1b4ce-fb57-5916-ad58-02ec6f2fb1cb", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-starter-rsocket@2.6.15-tuxcare.5", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-starter-rsocket", "version": "2.6.15-tuxcare.5", "purl": "pkg:maven/org.springframework.boot/spring-boot-starter-rsocket@2.6.15-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f04bc27d-0585-5c8a-842c-9be0174fdd10", "id": "CVE-2023-34055", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34055 is fixed in version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-rsocket@2.6.15-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:056a33e2-75e0-56c8-a621-e292ef2a3d2f", "id": "CVE-2024-38807", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38807 affects version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-rsocket@2.6.15-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fe8da257-abe2-50a1-8087-b765128914e5", "id": "CVE-2025-22235", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22235 is fixed in version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-rsocket@2.6.15-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:eae8e0c5-5365-551f-974d-3826ca4e2552", "id": "CVE-2026-22733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22733 affects version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-rsocket@2.6.15-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4326a7b2-1cba-52fb-b2ba-abc6bb988898", "id": "CVE-2026-40972", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40972 affects version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-rsocket@2.6.15-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1376ce02-cfd3-5664-a304-381658bd87e7", "id": "CVE-2026-40973", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40973 affects version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-rsocket@2.6.15-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:76e884bf-8256-52d7-aeaf-eed6af675d13", "id": "CVE-2026-40974", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40974 affects version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-rsocket@2.6.15-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9481210c-1f09-52cc-89b1-a7295c06b542", "id": "CVE-2026-40975", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40975 affects version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-rsocket@2.6.15-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:26a27054-0d8a-51aa-8549-c6deb6130916", "id": "CVE-2026-40977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40977 affects version 2.6.15-tuxcare.5 of org.springframework.boot:spring-boot-starter-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-rsocket@2.6.15-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-rsocket@2.6.15-tuxcare.5" } ] }