{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:27dc7833-d5ee-5842-af70-22e84851bd91", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.6.15.tuxcare.1", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-test", "version": "2.6.15.tuxcare.1", "purl": "pkg:maven/org.springframework.boot/spring-boot-test@2.6.15.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5a2cde41-1441-58f6-9216-e23bb4e60bbe", "id": "CVE-2023-34055", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34055 affects version 2.6.15.tuxcare.1 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.6.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0548baca-3514-5b91-8d9c-ac7ddb38ee1b", "id": "CVE-2024-38807", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38807 affects version 2.6.15.tuxcare.1 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.6.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1429802c-0625-58ef-9e2b-d8cc0492d926", "id": "CVE-2025-22235", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22235 is fixed in version 2.6.15.tuxcare.1 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.6.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:680e32c2-5a3c-5f81-90f3-4b67e4ee5732", "id": "CVE-2026-22733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22733 affects version 2.6.15.tuxcare.1 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.6.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af8d0ea0-94e1-539c-a107-02f640989949", "id": "CVE-2026-40972", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40972 affects version 2.6.15.tuxcare.1 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.6.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9a895611-5329-5c93-8ab5-6a8ccd4b0faa", "id": "CVE-2026-40973", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40973 affects version 2.6.15.tuxcare.1 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.6.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:202ec26f-4991-56ed-918e-577fff9f8199", "id": "CVE-2026-40974", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40974 affects version 2.6.15.tuxcare.1 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.6.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0f3c64dc-41ec-5980-aba7-95bad930b713", "id": "CVE-2026-40975", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40975 affects version 2.6.15.tuxcare.1 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.6.15.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9b25081e-b12f-57ca-91b2-7b033f086f91", "id": "CVE-2026-40977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40977 affects version 2.6.15.tuxcare.1 of org.springframework.boot:spring-boot-test." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.6.15.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-test@2.6.15.tuxcare.1" } ] }