{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:955ed1af-bda5-55b1-b1d8-377a2f95deed", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.6.15.tuxcare.1", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-starter-hateoas", "version": "2.6.15.tuxcare.1", "purl": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.6.15.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:18f48c6e-bb68-5b04-bcb9-03dafc82a4e2", "id": "CVE-2023-34055", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34055 affects version 2.6.15.tuxcare.1 of org.springframework.boot:spring-boot-starter-hateoas." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.6.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b72c790-551a-5620-bce9-ab73d0b5accd", "id": "CVE-2024-38807", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38807 affects version 2.6.15.tuxcare.1 of org.springframework.boot:spring-boot-starter-hateoas." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.6.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2ffe542e-0a5c-584a-927a-4fdd70911700", "id": "CVE-2025-22235", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22235 is fixed in version 2.6.15.tuxcare.1 of org.springframework.boot:spring-boot-starter-hateoas." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.6.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fd981fe6-fdfb-5f83-af5c-d62335e1bb5d", "id": "CVE-2026-22733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22733 affects version 2.6.15.tuxcare.1 of org.springframework.boot:spring-boot-starter-hateoas." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.6.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d2a2eb80-2afb-5320-a521-cc3c13a37182", "id": "CVE-2026-40972", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40972 affects version 2.6.15.tuxcare.1 of org.springframework.boot:spring-boot-starter-hateoas." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.6.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b567e187-4b63-5583-bfdf-9bf4b818d947", "id": "CVE-2026-40973", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40973 affects version 2.6.15.tuxcare.1 of org.springframework.boot:spring-boot-starter-hateoas." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.6.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e7001839-3cb8-54a0-806f-e5fef1f41a37", "id": "CVE-2026-40974", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40974 affects version 2.6.15.tuxcare.1 of org.springframework.boot:spring-boot-starter-hateoas." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.6.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:581e8f6f-0dbc-5a4f-a960-18d8aaa345b7", "id": "CVE-2026-40975", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40975 affects version 2.6.15.tuxcare.1 of org.springframework.boot:spring-boot-starter-hateoas." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.6.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:51ede54c-2652-5649-8dd2-7a3ce655bfa8", "id": "CVE-2026-40977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40977 affects version 2.6.15.tuxcare.1 of org.springframework.boot:spring-boot-starter-hateoas." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.6.15.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-hateoas@2.6.15.tuxcare.1" } ] }