{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:01f49dff-3ce8-5ccb-a852-b65e496e4bc6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-aop", "version": "4.1.7.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d5dcbfab-56eb-5b3b-8275-9594bd9ff977", "id": "CVE-2015-5211", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5211 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:74c98251-04d7-52ed-861e-9205bfae7e08", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bb4b131c-35dd-5189-adf7-93184a813446", "id": "CVE-2016-5007", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5007 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0cd67c04-3b64-538b-92c4-6687656bf1f2", "id": "CVE-2018-11039", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11039 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b86d2b99-9abe-5580-bb35-dac7956e061f", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:46044731-6771-5e3b-a38e-998f909fa432", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:513be5dc-a3ea-516a-b8d6-02314988f7db", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e697accb-1915-5862-9cbf-e1cde10d8ee4", "id": "CVE-2018-1271", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1271 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5ed65636-2d3d-51fb-8985-2516a22279bc", "id": "CVE-2018-1272", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1272 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:08f059e0-b932-5d81-977f-d73735cd36fd", "id": "CVE-2018-1275", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1275 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d6bbe12b-0613-5d53-82f3-1d641b940f9d", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:abfa6fd9-38fd-5eb2-9715-a692da353ea3", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c69a65a8-e7bf-5a1f-9206-3bfc59808c37", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fdba4595-96db-55ac-a890-c475616d138a", "id": "CVE-2022-22950", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22950 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e85bf5f4-66a4-5a99-b443-e4e1953755df", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:feddcdb1-933c-56ca-82b4-288830bb4659", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2b868d5b-39da-5da9-ba29-c86573ba5255", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:687b6e43-5420-5f50-9b6b-9c69d841493a", "id": "CVE-2022-22971", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22971 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5ce81858-6e13-58f0-90dd-bca3db41f853", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d27fb07c-7173-5783-9536-ccf66347b3d4", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:46eccd71-6932-5d30-988f-74d0648fe3da", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:89c5ef26-c9f6-596d-9fb1-6b89ecbd1973", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:74b8ba0c-9275-5507-bf99-4be0ba1a36dc", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0f05e745-80a8-5f10-80a5-e557cd4ff513", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f416f81e-503b-5f49-85e4-59f67cc9d4df", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c9823224-e225-5ad0-aa33-cdd6e09f8009", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b889a8dc-be2e-5cfe-895c-1d89531a9444", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f99d652-c0c5-5604-89e6-8da1d81d1690", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:91354beb-2836-56d4-8f86-8bdd1d64475b", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 4.1.7.RELEASE-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.1" } ] }