{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:76c53fa5-cc47-54b7-aed4-574370b0c575", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.6.15-tuxcare.6", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-test", "version": "2.6.15-tuxcare.6", "purl": "pkg:maven/org.springframework.boot/spring-boot-test@2.6.15-tuxcare.6" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a5a0b6c0-c6c5-5155-ac02-3466f5eb494b", "id": "CVE-2023-34055", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34055 is fixed in version 2.6.15-tuxcare.6 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.6.15-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:aa44dd33-8c37-5558-a7ca-b2c3b2bc2f24", "id": "CVE-2024-38807", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38807 affects version 2.6.15-tuxcare.6 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.6.15-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:863ded5f-8455-5219-b3ca-cdd4139704b9", "id": "CVE-2025-22235", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22235 is fixed in version 2.6.15-tuxcare.6 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.6.15-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:86d124f0-d18b-5b5b-b8a4-61a2dc83272e", "id": "CVE-2026-22733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22733 affects version 2.6.15-tuxcare.6 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.6.15-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:90ee6283-bf31-5f62-94ab-5fcf271340e7", "id": "CVE-2026-40972", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40972 affects version 2.6.15-tuxcare.6 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.6.15-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:86937b67-70af-5476-8b80-e7ffdaf9e77d", "id": "CVE-2026-40973", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40973 affects version 2.6.15-tuxcare.6 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.6.15-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b15133f7-61f8-58d6-b486-050084109d98", "id": "CVE-2026-40974", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40974 affects version 2.6.15-tuxcare.6 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.6.15-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:128da556-4304-58ff-ae3d-57f724271f23", "id": "CVE-2026-40975", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40975 affects version 2.6.15-tuxcare.6 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.6.15-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:dfc5fa48-1871-5536-a116-e6a2562bf3b6", "id": "CVE-2026-40977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40977 affects version 2.6.15-tuxcare.6 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.6.15-tuxcare.6" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.6.15-tuxcare.6" } ] }