diff --git a/.gitmodules b/.gitmodules
index 574e5c7c3e..c8d0691f83 100644
--- a/.gitmodules
+++ b/.gitmodules
@@ -55,6 +55,7 @@
 	sbom-url = https://github.com/DaveGamble/cJSON
 	sbom-description = Ultralightweight JSON parser in ANSI C
 	sbom-hash = acc76239bee01d8e9c858ae2cab296704e52d916
+	sbom-cve-exclude-list = CVE-2024-31755 Resolved in v1.7.18
 
 [submodule "components/mbedtls/mbedtls"]
 	path = components/mbedtls/mbedtls
diff --git a/components/freertos/FreeRTOS-Kernel/sbom.yml b/components/freertos/FreeRTOS-Kernel/sbom.yml
index d04a72557f..0d5791d972 100644
--- a/components/freertos/FreeRTOS-Kernel/sbom.yml
+++ b/components/freertos/FreeRTOS-Kernel/sbom.yml
@@ -7,3 +7,5 @@ description: An open-source, real-time operating system (RTOS) with additional f
 cve-exclude-list:
   - cve: CVE-2021-43997
     reason: This vulnerability only affects ARMv7-M and ARMv8-M ports of FreeRTOS and hence does not affect Espressif SoCs which are not based on these architectures.
+  - cve: CVE-2024-28115
+    reason: Affects only ARMv7-M MPU ports, and ARMv8-M ports with Memory Protected Unit (MPU) support enabled