{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:ef0d82ad-1a81-5e26-ac04-91c217938068",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.4",
      "type": "library",
      "group": "org.springframework",
      "name": "spring-aop",
      "version": "6.0.23-tuxcare.4",
      "purl": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.4"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:527bf11b-840a-5ef0-8274-bd82e15b0996",
      "id": "CVE-2024-38816",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-38816 affects version 6.0.23-tuxcare.4 of org.springframework:spring-aop."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:3ccc4a8e-e4ca-5e30-bda6-1afdf609cc3e",
      "id": "CVE-2024-38819",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-38819 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-aop."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:903fbc77-36e6-5914-9269-3022df6770de",
      "id": "CVE-2024-38820",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-38820 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-aop."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5dadb421-afb2-5e7f-a1fa-49f1edc1ada2",
      "id": "CVE-2025-22233",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-22233 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-aop."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:da59781c-1b5f-5486-a6a6-d5fe8f48b6de",
      "id": "CVE-2025-41234",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-aop."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:0b837543-9b59-5825-8b29-5a0b893191be",
      "id": "CVE-2025-41242",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-41242 affects version 6.0.23-tuxcare.4 of org.springframework:spring-aop."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:fd28f022-bf9e-5ef3-8dcf-46c57c783f73",
      "id": "CVE-2025-41249",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-41249 affects version 6.0.23-tuxcare.4 of org.springframework:spring-aop."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:434c4f5d-de3a-5658-9862-29779a99604a",
      "id": "CVE-2025-41254",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-41254 affects version 6.0.23-tuxcare.4 of org.springframework:spring-aop."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:66b4230d-4370-557d-a2cf-bb5cf7e5b6d3",
      "id": "CVE-2026-22735",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-22735 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-aop."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:414809b3-1748-53ae-90ff-3b0409e10c5d",
      "id": "CVE-2026-22737",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-22737 affects version 6.0.23-tuxcare.4 of org.springframework:spring-aop."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:ca0de66c-3652-5cc3-ba97-d168aa6f98f1",
      "id": "CVE-2026-22740",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-22740 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-aop."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5bd2bd1b-d57c-551f-b844-5c3c604881e3",
      "id": "CVE-2026-22741",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-22741 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-aop."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:8bdea654-1ed4-51d9-94b7-cdbbb08c8313",
      "id": "CVE-2026-22745",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-22745 is fixed in version 6.0.23-tuxcare.4 of org.springframework:spring-aop."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.4"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.4"
    }
  ]
}