{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:da408124-2398-5bd7-9de9-d92e778c2299", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-aop@5.3.27-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-aop", "version": "5.3.27-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-aop@5.3.27-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:33211fab-83dd-5735-96f5-2e1a1b7ce5cd", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.27-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:de9aeee9-1822-571e-8b07-ac36be99386f", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3bfbc915-755c-5e07-bea7-b37351f7928b", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5bf26d07-187d-59fe-8c3c-88b4f093de82", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8f63d248-0ea7-55b1-b399-e3876863a6de", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:70cf64b2-71ef-5bc6-a1eb-161ea03e7861", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6c94075a-d0f4-5dbf-986d-edec9f3438d7", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2593aa47-1455-5d33-9c52-398cd50cbc3e", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:35c7c0d4-9ed9-5af8-b3cf-74d45aa424cd", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8f952c31-5040-5039-b4dc-68b44abf74a9", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9f84e9bc-bf1e-5b46-a93b-4ead79cf84e0", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:173d9b51-da4a-5173-9252-e4b17fc51f19", "id": "CVE-2025-41234", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41234 is a false positive for org.springframework:spring-aop 5.3.27-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4f5f4e11-7f2d-5876-a1aa-d6c82614d1c0", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:29543965-fc05-563d-98ac-3752a9694807", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 5.3.27-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b0053ce4-59d6-596a-a9b9-4771fe7063a8", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.27-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:37e3933d-e29c-560f-9241-2f4d53fcfe68", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.27-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.27-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:033de38f-28f1-556e-8fa9-e3bfc5085127", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.27-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.27-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.27-tuxcare.2" } ] }