{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:44cba8c0-9908-5dd2-b0a7-9096ee503a15", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-r2dbc", "version": "6.0.23-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:dc9814bf-6b6b-5cff-9999-c254d67ec432", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 6.0.23-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c44ebaab-803c-562a-ad7d-17e32d440067", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b29cf511-9ac4-5582-9265-4246d55e03e4", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ce1f1cd1-dc03-5dde-802f-8d89401c2b50", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b9330bbd-480e-5eed-90a9-b29099844ef3", "id": "CVE-2025-41234", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0e0c3858-f1e7-578f-bc3b-2148b0a0a87b", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 6.0.23-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:db9015cf-3c46-54a2-8075-973bed1659ea", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 6.0.23-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:21459210-1570-535a-8dbe-ca5658afdae6", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 6.0.23-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:73de16d2-0823-544e-b353-d258750aaac2", "id": "CVE-2026-22735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22735 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:76aed4dd-e0e2-56d4-a85c-2ee0bc6e63db", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 6.0.23-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a8e5e6ee-4f91-5152-b6d0-c2578641123a", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0dbe6688-0766-5242-b0ff-d6c2df97db5a", "id": "CVE-2026-22741", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22741 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:95bf3762-437d-5512-bf22-43717ec2f9ed", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 6.0.23-tuxcare.3 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.0.23-tuxcare.3" } ] }