{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d3ef566c-2394-5e02-8ed7-62ab70e5952f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-solr@2.4.6.tuxcare.2", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-starter-data-solr", "version": "2.4.6.tuxcare.2", "purl": "pkg:maven/org.springframework.boot/spring-boot-starter-data-solr@2.4.6.tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d256ac82-8a44-5c96-bd64-de65ae44dc18", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 2.4.6.tuxcare.2 of org.springframework.boot:spring-boot-starter-data-solr." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-solr@2.4.6.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:85445ca2-a3e8-5da1-82c6-0eda6b6e75f7", "id": "CVE-2023-20873", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20873 is fixed in version 2.4.6.tuxcare.2 of org.springframework.boot:spring-boot-starter-data-solr." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-solr@2.4.6.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:68f514f2-e0f7-5124-9af5-6fcb376f52ea", "id": "CVE-2023-20883", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20883 is fixed in version 2.4.6.tuxcare.2 of org.springframework.boot:spring-boot-starter-data-solr." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-solr@2.4.6.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cd7b6c35-cf1f-5ab1-a1c5-81dbdce3a3a1", "id": "CVE-2023-34055", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34055 is fixed in version 2.4.6.tuxcare.2 of org.springframework.boot:spring-boot-starter-data-solr." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-solr@2.4.6.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a75fba3c-9a85-5c8d-b326-67a4bed9e584", "id": "CVE-2023-38286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-38286 affects version 2.4.6.tuxcare.2 of org.springframework.boot:spring-boot-starter-data-solr." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-solr@2.4.6.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:916abfe3-1a10-5661-b8f1-d22e81e33520", "id": "CVE-2024-38807", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38807 affects version 2.4.6.tuxcare.2 of org.springframework.boot:spring-boot-starter-data-solr." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-solr@2.4.6.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:60883485-7a90-5987-9013-5bafbfe455b0", "id": "CVE-2025-22235", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22235 is fixed in version 2.4.6.tuxcare.2 of org.springframework.boot:spring-boot-starter-data-solr." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-solr@2.4.6.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bf6f42f3-c9d2-544a-9661-84f71e5e9b1d", "id": "CVE-2026-22733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22733 affects version 2.4.6.tuxcare.2 of org.springframework.boot:spring-boot-starter-data-solr." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-solr@2.4.6.tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-solr@2.4.6.tuxcare.2" } ] }