{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f94736b9-9150-52f4-abb5-505885df27b3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-starter-rsocket@2.6.15-tuxcare.7", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-starter-rsocket", "version": "2.6.15-tuxcare.7", "purl": "pkg:maven/org.springframework.boot/spring-boot-starter-rsocket@2.6.15-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a42f4ec0-a5ab-589f-95bc-8e2b7c3d1c5f", "id": "CVE-2023-34055", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34055 is fixed in version 2.6.15-tuxcare.7 of org.springframework.boot:spring-boot-starter-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-rsocket@2.6.15-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5e53d10d-3e39-522c-a6b8-d3a325f71478", "id": "CVE-2024-38807", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38807 affects version 2.6.15-tuxcare.7 of org.springframework.boot:spring-boot-starter-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-rsocket@2.6.15-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ff49f487-59f5-5160-8457-2a459877d5bf", "id": "CVE-2025-22235", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22235 is fixed in version 2.6.15-tuxcare.7 of org.springframework.boot:spring-boot-starter-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-rsocket@2.6.15-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:63472df1-a114-57b2-8d81-ec8d352a93da", "id": "CVE-2026-22733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22733 affects version 2.6.15-tuxcare.7 of org.springframework.boot:spring-boot-starter-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-rsocket@2.6.15-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d74d7596-e2ea-5c5d-ac70-2bf969308ddc", "id": "CVE-2026-40972", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40972 affects version 2.6.15-tuxcare.7 of org.springframework.boot:spring-boot-starter-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-rsocket@2.6.15-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:92d79ce7-e798-55ea-99be-7e88929b9277", "id": "CVE-2026-40973", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40973 affects version 2.6.15-tuxcare.7 of org.springframework.boot:spring-boot-starter-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-rsocket@2.6.15-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5e80fdd9-10c5-515d-8f48-01fd8f15ef7d", "id": "CVE-2026-40974", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40974 affects version 2.6.15-tuxcare.7 of org.springframework.boot:spring-boot-starter-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-rsocket@2.6.15-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:577a365b-0ba1-518d-965d-5386454967d1", "id": "CVE-2026-40975", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40975 affects version 2.6.15-tuxcare.7 of org.springframework.boot:spring-boot-starter-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-rsocket@2.6.15-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:bc82a405-7d73-5a20-9a8d-b5d2dcc2046e", "id": "CVE-2026-40977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40977 affects version 2.6.15-tuxcare.7 of org.springframework.boot:spring-boot-starter-rsocket." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-rsocket@2.6.15-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-rsocket@2.6.15-tuxcare.7" } ] }