{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d06e5bcd-dbde-539f-a9d8-ecb717ac08dc", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-aspects", "version": "5.2.0.RELEASE-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c419c972-82fc-56af-8b41-6b64c4609b30", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:00ff0eb6-6fb0-5238-84de-5fb1092882e2", "id": "CVE-2020-5397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5397 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:542e9889-d8a7-5d3d-9870-c17f544e3f69", "id": "CVE-2020-5398", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5398 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2c15650e-8f68-5506-b111-8d4f79e4a590", "id": "CVE-2020-5421", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5421 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a3a415fa-8e33-5d4a-aac8-7c7c5caec818", "id": "CVE-2021-22060", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22060 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a4bfd703-b7f4-574f-8580-fd93e9a55721", "id": "CVE-2021-22096", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22096 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d0e9811-0ee5-55ca-9c8f-5cbcb5dc5a06", "id": "CVE-2021-22118", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22118 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:345714df-ee41-54d3-af00-8821522dd279", "id": "CVE-2022-22950", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22950 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:66762026-a8ce-587f-b345-f0192e8a8b90", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:64e84ff4-185e-5656-8635-4cb9dac59581", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:70115054-72b8-5611-8c5e-0250dbf171a7", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3ee800f0-64d4-522b-b902-f19bc6e68c2d", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9f67f86b-409e-520b-97ed-b8d5499e01ae", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7e97709c-be9f-511f-a40b-e2dabe785cff", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c8665bf8-0b69-56d5-bd3b-9d344a4b1d69", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:836f3873-10c4-56f9-bb9b-e1d7b2dd2b53", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ca81c0ae-75ad-5f17-bad1-89824f7cdb3d", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:855f1f52-bac7-56e8-8627-94f56b85d6b6", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:866cce03-d3fb-519b-95dd-bb7ed17758b9", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-aspects 5.2.0.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b65cdf59-8453-5d10-b917-d06135d059fa", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bd28ee14-f162-501d-94ab-42b347d549cf", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8d372045-29f3-570f-a57a-917cc70778dd", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f3bd0e61-3dbe-5e8e-b12a-ce3425c18bc1", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bf738c32-1bc1-5a8d-9e16-5943299b2114", "id": "CVE-2025-41249", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41249 is a false positive for org.springframework:spring-aspects 5.2.0.RELEASE-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5c312bf6-653e-57f1-8c2f-06d86eed7bba", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 5.2.0.RELEASE-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.1" } ] }