{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:31274fd3-0424-5ffa-9696-9ccf44d50fa9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-aop", "version": "4.0.0.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d58324e0-94dc-51aa-a022-207ebb5d91ef", "id": "CVE-2014-0054", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0054 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f1abfde9-687a-5e73-807b-4a3768043d67", "id": "CVE-2014-0225", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0225 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:feca7c87-791d-57d0-b3f4-a54ad0badd57", "id": "CVE-2014-1904", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-1904 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f4f7804c-148a-544b-9d60-53705797ce97", "id": "CVE-2014-3578", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3578 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a33ba0c6-3191-5f06-97ad-c4520ea2dd42", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:098e41cc-ab45-5b9f-8e8b-12312f5d3433", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:11bb0306-a770-5c2c-ae62-7b1aa61c05dc", "id": "CVE-2015-5211", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-5211 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c075149e-71cd-58db-99a0-c0a40bec9ec5", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ff0af2a4-4ee0-5a9c-8504-8683070688da", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f1203018-c29d-5d6d-ba41-323c0b717c98", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9751f8de-2df1-5320-9510-f863eaaa4c0d", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ca95ea5-432d-51a2-9d70-137412acce1f", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:29e9089b-e2b4-554b-a639-cfaefb229986", "id": "CVE-2018-1257", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1257 is a false positive for org.springframework:spring-aop 4.0.0.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b0c115af-09a0-58cb-be9b-de6ce6d4821b", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6a2acbfd-428f-5f46-b9e9-2bceccaa97a5", "id": "CVE-2018-1271", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1271 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a11682b3-83fc-5d70-a701-e4253586c385", "id": "CVE-2018-1272", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1272 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:36d53414-a05c-599a-b2ec-750a2195d24b", "id": "CVE-2018-1275", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1275 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:37a9000b-4774-519f-b2ac-9f0976966151", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cd80fb04-a6bb-5f51-869f-8301c8f1e977", "id": "CVE-2021-22060", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22060 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c02c56a5-e092-5127-a6a8-f56a51fa3c4e", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6113e1f2-90e8-5d18-919b-cb2f3b2ff009", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:17a2b5ec-b8cd-5e43-80a9-53650d9030cd", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e452d754-39d5-55e0-967d-ba8e834ca8ba", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9fcdff44-5c5b-5f29-a270-21712a3d43b5", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:32417237-1e65-549d-bae2-17b82c96d3ce", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f50b6145-5bb7-5b8a-b1be-a7e433d6594a", "id": "CVE-2022-22971", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22971 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2b978426-7024-597c-bc70-fac134f611ce", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f783ebf1-fa1d-5f75-95e9-f8dbd3515159", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:679389a3-8626-529b-93c5-1d23871edd27", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1a6bd565-2ead-5a61-aeaf-c638b9e11452", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e39fd5aa-7537-5993-b65d-d23bbcf4e7d1", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e63cb8c2-644a-5997-ad90-624d7118db28", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:10d88eaa-7940-5f69-a92d-c4e4be0d221c", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a746d744-932d-5187-bcb6-e73aebc04015", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:73e956ff-f270-5754-98f3-77b67789eeb8", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f655caa4-b3bd-5032-b5f6-4322d383b791", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2fe39e70-6b74-580a-9921-ff2184ed81a3", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b9c08f3e-ab33-5920-a611-d82c3986d1c6", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:31995d2a-b811-5632-9bdd-fadb418dd2ad", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7bad95db-d2d7-5b70-b7ad-d8079ce79f74", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 4.0.0.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.1" } ] }