{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:02786fe1-4e6b-5b70-944a-faffd1a63c41", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-webflux", "version": "6.0.23-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:90f40616-0d26-52ea-bc2f-56a878b7d5f5", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 6.0.23-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2380e1d3-d565-5f59-8b67-040bc27ff36c", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:71b27d3f-322c-5c1e-a62d-cc1a8ed0f7fb", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2daaec46-7c59-5996-97a6-f19a4e8d102c", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0f490e8c-d476-57c0-88aa-54c3318b3222", "id": "CVE-2025-41234", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:300bf74e-98ec-5f6c-9c93-724af8b3b7f5", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 6.0.23-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3908cc7d-1d9d-5b3e-8b4e-c18dfeaad3b8", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 6.0.23-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eb475224-0d01-5df3-aa23-7da3837bccdf", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 6.0.23-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f0195e10-8569-5793-8bf5-9c12b24e75fd", "id": "CVE-2026-22735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22735 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:56182daa-2051-54fc-b349-3135e6842fcc", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 6.0.23-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e07cf502-1b48-5b15-859e-416321199701", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:968e1c0e-d124-5126-a6af-bc15c06dea3d", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 6.0.23-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0db39b8e-9121-5a1e-95c7-cfb215683d78", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 6.0.23-tuxcare.2 of org.springframework:spring-webflux." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-webflux@6.0.23-tuxcare.2" } ] }