{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e55e5e14-fbe7-5d14-aa7b-6b522b9ef807", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra@3.3.13-tuxcare.2", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-starter-data-cassandra", "version": "3.3.13-tuxcare.2", "purl": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra@3.3.13-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4c4db338-176f-5920-8e3e-231260cdf19c", "id": "CVE-2025-22235", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22235 affects version 3.3.13-tuxcare.2 of org.springframework.boot:spring-boot-starter-data-cassandra." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra@3.3.13-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5e114524-ef24-5dd7-8fa8-fa87b3d9dbef", "id": "CVE-2026-22733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22733 affects version 3.3.13-tuxcare.2 of org.springframework.boot:spring-boot-starter-data-cassandra." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra@3.3.13-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:903c3696-5712-531a-9564-9ed3e8234925", "id": "CVE-2026-40972", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40972 affects version 3.3.13-tuxcare.2 of org.springframework.boot:spring-boot-starter-data-cassandra." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra@3.3.13-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:17f7c8fe-dcfb-587d-a563-1ef29b8ef03a", "id": "CVE-2026-40973", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40973 affects version 3.3.13-tuxcare.2 of org.springframework.boot:spring-boot-starter-data-cassandra." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra@3.3.13-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:67c8d597-325e-5d8e-9c3a-d197f16be17a", "id": "CVE-2026-40974", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40974 affects version 3.3.13-tuxcare.2 of org.springframework.boot:spring-boot-starter-data-cassandra." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra@3.3.13-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8fd55981-b0c4-5ece-8a75-7ef0047bb389", "id": "CVE-2026-40975", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40975 affects version 3.3.13-tuxcare.2 of org.springframework.boot:spring-boot-starter-data-cassandra." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra@3.3.13-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:80a1664d-3765-542d-a6fc-0daf57ceeedf", "id": "CVE-2026-40977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40977 affects version 3.3.13-tuxcare.2 of org.springframework.boot:spring-boot-starter-data-cassandra." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra@3.3.13-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-data-cassandra@3.3.13-tuxcare.2" } ] }