{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0fa29dad-4efa-5d35-b8b0-69ba08dcf699", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-starter-artemis@2.3.6.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-starter-artemis", "version": "2.3.6.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework.boot/spring-boot-starter-artemis@2.3.6.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:1ecf6e75-f0bc-582f-b0cc-01321c993946", "id": "CVE-2023-20873", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20873 is fixed in version 2.3.6.RELEASE-tuxcare.3 of org.springframework.boot:spring-boot-starter-artemis." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-artemis@2.3.6.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1f12dab7-bb82-543a-945e-7fc0b7590895", "id": "CVE-2023-20883", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20883 is fixed in version 2.3.6.RELEASE-tuxcare.3 of org.springframework.boot:spring-boot-starter-artemis." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-artemis@2.3.6.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:95283100-5434-5aff-935c-581570820486", "id": "CVE-2023-34055", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34055 is fixed in version 2.3.6.RELEASE-tuxcare.3 of org.springframework.boot:spring-boot-starter-artemis." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-artemis@2.3.6.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1c50f0be-d161-5029-bcdb-8740c8bec4d3", "id": "CVE-2023-38286", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-38286 is a false positive for org.springframework.boot:spring-boot-starter-artemis 2.3.6.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-artemis@2.3.6.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b1c5a819-6b08-5b10-b6ce-b04b6f74501f", "id": "CVE-2024-38807", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38807 is fixed in version 2.3.6.RELEASE-tuxcare.3 of org.springframework.boot:spring-boot-starter-artemis." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-artemis@2.3.6.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:517f8542-1182-5d97-971b-ca5b115c9fc7", "id": "CVE-2025-22235", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22235 affects version 2.3.6.RELEASE-tuxcare.3 of org.springframework.boot:spring-boot-starter-artemis." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-artemis@2.3.6.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cbe87a76-5d7b-5490-bb98-14ab0afd00f3", "id": "CVE-2026-22733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22733 affects version 2.3.6.RELEASE-tuxcare.3 of org.springframework.boot:spring-boot-starter-artemis." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-artemis@2.3.6.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9dc3ac5b-a118-5066-89e9-e6c2458958cb", "id": "CVE-2026-40972", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40972 affects version 2.3.6.RELEASE-tuxcare.3 of org.springframework.boot:spring-boot-starter-artemis." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-artemis@2.3.6.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9190f700-88ff-5c2e-87c3-7b2da516ade9", "id": "CVE-2026-40973", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40973 affects version 2.3.6.RELEASE-tuxcare.3 of org.springframework.boot:spring-boot-starter-artemis." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-artemis@2.3.6.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1759f6f3-2dc3-559c-980c-2fa1d22f0f2b", "id": "CVE-2026-40974", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40974 affects version 2.3.6.RELEASE-tuxcare.3 of org.springframework.boot:spring-boot-starter-artemis." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-artemis@2.3.6.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d6b57fa3-3566-586a-b802-02859a5c7767", "id": "CVE-2026-40975", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40975 affects version 2.3.6.RELEASE-tuxcare.3 of org.springframework.boot:spring-boot-starter-artemis." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-artemis@2.3.6.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5958fb3e-c969-5947-8468-4f9ea7eba693", "id": "CVE-2026-40977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40977 affects version 2.3.6.RELEASE-tuxcare.3 of org.springframework.boot:spring-boot-starter-artemis." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-artemis@2.3.6.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-artemis@2.3.6.RELEASE-tuxcare.3" } ] }