{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:21ac3825-390f-53cd-9751-910c6183a001", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-aop@5.3.24-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-aop", "version": "5.3.24-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-aop@5.3.24-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:98d43fd8-5751-5a37-9f08-55361edc0ef9", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.24-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9cabd8f6-a447-5bfb-a843-190d28562bc2", "id": "CVE-2023-20860", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20860 affects version 5.3.24-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ff372359-6f9a-5fbf-8f5b-4489a72aa46b", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e9d3e8f-3745-5af7-b942-f14eec5f218d", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 5.3.24-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db9a22dd-bdf4-5679-8670-7d3024d7ff55", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b92cd4f0-1189-5457-98be-33e2b899b14b", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 5.3.24-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d995d408-334a-5c02-8b8d-be2e2b1c3f58", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.3.24-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8e4e9ff1-c06c-53e0-97f7-f2ea374b1dd8", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:73546d8a-ece2-5365-99e3-e930f27917c4", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:09cfa28b-9110-565b-9894-d6ec1b5a2075", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e04ec6e-2127-58a1-96d6-4be1eff3e0fc", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5315a413-b863-5436-8b92-a268e0ad7c98", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:39ed4cfb-8b4f-556e-88a2-07a3e0022e4f", "id": "CVE-2024-38828", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38828 affects version 5.3.24-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e0454ea9-c3c4-58b5-ae65-75487374cc10", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:28b8fd13-18a9-58e4-bf04-fee798794bc0", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f9c09bd8-2c64-5026-9630-0258900c085e", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4b63f9d-5413-5cd2-bba2-1018e0e3d1f5", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.24-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2d86480b-b681-5ef4-8f0e-80e2c5fa799b", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.24-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.24-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ce695ae4-a51e-5bad-985f-414b9937a074", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.24-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.24-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.24-tuxcare.1" } ] }