{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b48fdebd-c89a-5d1d-845d-cd3fe8eb0041", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-webflux", "version": "6.0.23-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:dd7c97ee-49c4-5260-b89c-aafd1b33e16f", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 6.0.23-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2a53b3e9-1295-5451-a2e6-967cefec8633", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:13b77b7b-caa7-502b-b171-44606082c085", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c23f154e-af37-54ed-9f82-982b55e81dca", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b6c3d025-b196-53d6-a8af-32ba13f82b60", "id": "CVE-2025-41234", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:917265c4-61b4-53a0-b611-7eb174ddf680", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 6.0.23-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b4d7a6d7-517c-5d0d-b7fb-37c2da515a86", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 6.0.23-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ac477eb6-b576-5ef9-8c63-8fe620e53f19", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 6.0.23-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5c50e603-1259-5db6-b396-bf2a0a8a7d4d", "id": "CVE-2026-22735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22735 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:df76cba0-a998-5e88-a409-d072d4604659", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 6.0.23-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5b551b75-f2b2-5b1c-8923-f0a2d017bbee", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c0778cfe-46bf-50a5-a493-f7e8e5f44b5a", "id": "CVE-2026-22741", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22741 is fixed in version 6.0.23-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0a746aee-b192-5e22-948e-27b7a16cca9a", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 6.0.23-tuxcare.3 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.3" } ] }