{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:389f9899-2628-53e4-a3a1-5720b2703b21", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.security/spring-security-aspects@4.2.12.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework.security", "name": "spring-security-aspects", "version": "4.2.12.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework.security/spring-security-aspects@4.2.12.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:833e1f5b-1580-5230-a2d3-3da8558bc87e", "id": "CVE-2007-1651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1651 affects version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@4.2.12.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db54a263-5e03-591e-91d9-1f59ce6f0f1e", "id": "CVE-2007-1652", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1652 affects version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@4.2.12.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a4ac113d-45b9-598a-9949-d3faa6093934", "id": "CVE-2019-11272", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-11272 is fixed in version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@4.2.12.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c3e07fe5-ff92-5d09-ac89-489891002bc3", "id": "CVE-2020-5408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5408 affects version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@4.2.12.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:35218991-85ed-54f8-b958-89d00bf10f86", "id": "CVE-2021-22112", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22112 is fixed in version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@4.2.12.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f75560b5-2dc4-56c2-be5d-09f883fa9c73", "id": "CVE-2021-22119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22119 affects version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@4.2.12.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f75c6b50-e762-54a4-a101-1ac8ee87bd5c", "id": "CVE-2022-22978", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22978 is fixed in version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@4.2.12.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1c8965d6-3205-5869-894a-3c9d68f9a8d1", "id": "CVE-2023-34042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34042 affects version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@4.2.12.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d4038b9f-6226-5ddf-8c22-b6678c5036ff", "id": "CVE-2024-22257", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22257 is fixed in version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@4.2.12.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bf69584b-19d1-5017-a839-183ab2bed561", "id": "CVE-2024-38821", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38821 affects version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@4.2.12.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eda2eeca-54a7-5491-b2a4-8d8d9143b335", "id": "CVE-2024-38827", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38827 is fixed in version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@4.2.12.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a4cbe75c-da4c-5e9a-9bac-4a2cc1336158", "id": "CVE-2025-22228", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22228 is fixed in version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@4.2.12.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3defe346-3460-5669-bfdb-4d7f128825cc", "id": "CVE-2026-22732", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22732 affects version 4.2.12.RELEASE-tuxcare.1 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@4.2.12.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@4.2.12.RELEASE-tuxcare.1" } ] }