{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1297821e-8a59-55f7-bed6-1a95a02a7b09", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-aspects", "version": "5.2.0.RELEASE-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6679fe3a-51d9-5075-8300-c9dfce61da34", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1bab0541-5a44-5a56-995e-e40f65e59220", "id": "CVE-2020-5397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5397 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:221e844b-81de-5d9d-9be2-464c41035cca", "id": "CVE-2020-5398", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5398 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:93242327-621a-5ef1-b23a-b6b9ab8548a2", "id": "CVE-2020-5421", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5421 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f025a1a9-31a2-5bb5-9bb5-7d707cfdd310", "id": "CVE-2021-22060", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22060 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:45c49feb-63d7-51aa-b3e8-aa5e6df1404f", "id": "CVE-2021-22096", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22096 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:12d9a48f-a719-5c51-8ff2-01534ba1fcbe", "id": "CVE-2021-22118", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22118 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9e3b39f0-3303-57f9-8a55-99ae219f8b49", "id": "CVE-2022-22950", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22950 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:86a72155-da8b-5167-b86b-89dc160de2a0", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c2693d49-2433-57d2-9f36-0acff182155b", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:90bf9ec5-7e79-5c68-9e87-188646c20f9e", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:de533ae8-4ece-5376-945c-ffcaf92e3b0e", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:630bebca-684b-5552-9060-c7c482c03d26", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d442d708-97a4-5009-b521-ab33caa9b058", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9132b001-f856-5ebe-a34d-1edf6c0e9877", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e90685cf-a993-56b9-af3e-3629c78e110d", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e32696ee-4b9c-5639-a735-141af12eacdb", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1f7df9f4-1e6e-5ee9-a847-a82bf80c6e28", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f597376c-5053-5699-a0e8-61bd7fd41341", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-aspects 5.2.0.RELEASE-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:14dcd1a1-262d-5477-b1ab-f70dbc08f2f9", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8264a3e2-43cd-5a2b-9bbb-bde3b60beeb2", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aa0aa367-2dd0-5979-9805-bfab7feedf1c", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f6c8fc69-fe98-501a-9f77-1c0d7025faeb", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:153e3ca9-0025-56a0-8663-2276978f9942", "id": "CVE-2025-41249", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41249 is a false positive for org.springframework:spring-aspects 5.2.0.RELEASE-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:934b6fa0-58ce-50a6-aff4-666830df1091", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 5.2.0.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.2" } ] }