{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:242f5572-9fa5-58ba-84d4-4558e770ab11", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-neo4j@3.3.13-tuxcare.2", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-starter-data-neo4j", "version": "3.3.13-tuxcare.2", "purl": "pkg:maven/org.springframework.boot/spring-boot-starter-data-neo4j@3.3.13-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:faf5dcd4-7c17-5f04-8a5a-e150704611b6", "id": "CVE-2025-22235", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22235 affects version 3.3.13-tuxcare.2 of org.springframework.boot:spring-boot-starter-data-neo4j." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-neo4j@3.3.13-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e51c67ad-6873-5860-a7bc-25750c2c9fa0", "id": "CVE-2026-22733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22733 affects version 3.3.13-tuxcare.2 of org.springframework.boot:spring-boot-starter-data-neo4j." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-neo4j@3.3.13-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:22e8e799-1882-58ab-a753-6484051a8819", "id": "CVE-2026-40972", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40972 affects version 3.3.13-tuxcare.2 of org.springframework.boot:spring-boot-starter-data-neo4j." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-neo4j@3.3.13-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b7440df-3ab3-5a6b-96c3-1e2e4372987d", "id": "CVE-2026-40973", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40973 affects version 3.3.13-tuxcare.2 of org.springframework.boot:spring-boot-starter-data-neo4j." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-neo4j@3.3.13-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4242ed9a-b874-5643-ba1e-13733520db49", "id": "CVE-2026-40974", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40974 affects version 3.3.13-tuxcare.2 of org.springframework.boot:spring-boot-starter-data-neo4j." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-neo4j@3.3.13-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aab2eee4-5270-5d9c-96eb-46d28a004c92", "id": "CVE-2026-40975", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40975 affects version 3.3.13-tuxcare.2 of org.springframework.boot:spring-boot-starter-data-neo4j." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-neo4j@3.3.13-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4435341a-d78b-55ca-811e-10ae90b2e8ab", "id": "CVE-2026-40977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40977 affects version 3.3.13-tuxcare.2 of org.springframework.boot:spring-boot-starter-data-neo4j." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-neo4j@3.3.13-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-neo4j@3.3.13-tuxcare.2" } ] }