{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:98b73e87-c98a-5ef2-8c25-116ccc3de194", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-aop@5.3.37-tuxcare.5", "type": "library", "group": "org.springframework", "name": "spring-aop", "version": "5.3.37-tuxcare.5", "purl": "pkg:maven/org.springframework/spring-aop@5.3.37-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5fcdbb06-75e1-5de3-b790-18a063bd2ea0", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.37-tuxcare.5 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.37-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1f44636e-e33b-5a81-b6ea-fae262e0f077", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.37-tuxcare.5 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.37-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6f884c02-3aa7-5fc1-940a-fd89f6e8c0d7", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.37-tuxcare.5 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.37-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:17a67b13-3523-5c9f-95e5-68e59439404f", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.37-tuxcare.5 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.37-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:30395ecc-92f9-5430-8654-b0e2ef15f775", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.37-tuxcare.5 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.37-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:986522d3-c113-5e7b-ab1f-9f8e930a2882", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.37-tuxcare.5 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.37-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b3a0df19-89b5-5317-bd06-886d51adec7d", "id": "CVE-2024-38828", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38828 affects version 5.3.37-tuxcare.5 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.37-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bc8830a9-78f4-5190-9dae-2181ec54707e", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.3.37-tuxcare.5 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.37-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4cd34e55-696a-5125-8e6b-b8a56204e145", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 5.3.37-tuxcare.5 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.37-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e78d6c19-1f19-5bf9-a794-250b76a5ccd6", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.37-tuxcare.5 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.37-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b278d14b-b508-519b-84d5-5611b5183c0f", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 5.3.37-tuxcare.5 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.37-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c8b52249-5e15-5ec6-bde3-e713ff583982", "id": "CVE-2026-22735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22735 is fixed in version 5.3.37-tuxcare.5 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.37-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bf97c884-492a-5350-a5e9-4a83fa254509", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.37-tuxcare.5 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.37-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:de698c14-f5eb-515e-b722-b47bfc5f1c55", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 5.3.37-tuxcare.5 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.37-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4975044e-974b-5980-8036-06f01e26e226", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.37-tuxcare.5 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.37-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:34dbf2a1-3ee4-5cbd-9179-e0945f420429", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.37-tuxcare.5 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.37-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.37-tuxcare.5" } ] }