{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:91a01778-784d-53a2-b2b7-3e356c219e62", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-r2dbc@6.1.21-tuxcare.5", "type": "library", "group": "org.springframework", "name": "spring-r2dbc", "version": "6.1.21-tuxcare.5", "purl": "pkg:maven/org.springframework/spring-r2dbc@6.1.21-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:052e9182-0958-58b4-a814-76b6993670e1", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 6.1.21-tuxcare.5 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.1.21-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2a433292-cfab-5356-b3b3-f47f07b367b7", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 6.1.21-tuxcare.5 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.1.21-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9eb0a9f6-034f-5bff-a18f-f5c037c2a9fc", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 6.1.21-tuxcare.5 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.1.21-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5fb5056e-1049-5ab3-84b9-7069493f08e5", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 6.1.21-tuxcare.5 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.1.21-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d6b7d1bb-6830-5310-9f9a-236c9780b174", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 6.1.21-tuxcare.5 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.1.21-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f06bc86d-3008-5025-96d4-f5e1d3a5a842", "id": "CVE-2026-22737", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22737 is fixed in version 6.1.21-tuxcare.5 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.1.21-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:251a197d-f750-51ca-9c01-f37df053a92d", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 6.1.21-tuxcare.5 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.1.21-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c312d240-bc9c-5172-84f5-e826bd260895", "id": "CVE-2026-22741", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22741 is fixed in version 6.1.21-tuxcare.5 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.1.21-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b1b94640-ceae-5c85-8312-cba72eeca227", "id": "CVE-2026-22745", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22745 is fixed in version 6.1.21-tuxcare.5 of org.springframework:spring-r2dbc." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.1.21-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-r2dbc@6.1.21-tuxcare.5" } ] }