{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:81bd9bf3-ac8d-54b1-9ace-6398c0a2c0bc", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.4", "type": "library", "group": "org.springframework", "name": "spring-r2dbc", "version": "6.0.23-tuxcare.4", "purl": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:60a971fb-5b0e-5ed7-906d-79188978f6f1", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 6.0.23-tuxcare.4 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a0e2feec-fe95-564b-bd5d-ca27275102ff", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d0877017-061a-54db-9e8d-a670dbd04ce2", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:241dd35e-9336-51ca-a700-bf5505acade6", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:19caec61-4688-5517-b371-fd7b5d7eae13", "id": "CVE-2025-41234", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:72f3c514-6eb7-5282-a5e8-59d8d0c069c4", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 6.0.23-tuxcare.4 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4b875af1-a7f3-5289-b392-de4584efed95", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 6.0.23-tuxcare.4 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:118dcf70-b9c8-5b7f-8d27-dce7a2fa7f0e", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 6.0.23-tuxcare.4 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f28f9e34-3cce-56c9-be4f-5878ca5c85a5", "id": "CVE-2026-22735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22735 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:dd426d0b-5365-59c8-a21b-338cabe9552b", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 6.0.23-tuxcare.4 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:887657bb-b636-5518-9049-66f2a7abe053", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0aea00c2-e64d-54e5-9055-509f4b776650", "id": "CVE-2026-22741", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22741 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:27d35279-f091-523e-8c73-bc650d90c3e8", "id": "CVE-2026-22745", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22745 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.4" } ] }