{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:2cc87af1-c94e-5079-92a7-ed6abcce4fba", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-aspects", "version": "5.2.0.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c66b9d73-d006-5458-9caf-b39cde367406", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1e352bf0-6df0-5c9a-90c0-9acfbe5c514d", "id": "CVE-2020-5397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5397 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f64dc9cd-1c20-5183-a45a-401b83c2e110", "id": "CVE-2020-5398", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5398 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:44c6cc9d-d30c-588b-9707-60251436a60a", "id": "CVE-2020-5421", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5421 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:30e07c95-2cac-5dc5-969e-07f2275502ed", "id": "CVE-2021-22060", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22060 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e6ecca41-09b9-57a9-87b5-ba5eb8f29415", "id": "CVE-2021-22096", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22096 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ea2083c0-ae41-5843-8d9a-95fca997d442", "id": "CVE-2021-22118", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22118 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:368a5f28-71ff-5b2c-b469-67dd723689cc", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dd7e7197-d139-5b91-9e0e-213f543525ca", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:19783da4-b14a-5622-bd4c-4dde654193dc", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:937c511e-a685-5442-89b3-369a2b073e98", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c3704049-a4f2-5291-8a37-feeda3a0625a", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3de5ab56-1d49-5074-bd4b-b93cec641792", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b769b717-c561-5573-9c13-4a3df06ba974", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f3666771-0df4-5a79-9373-5b7498abadc2", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ae6fc937-9664-57b2-aaa7-151f2d17cd98", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:11886225-b4ec-575c-b268-f1654417d238", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a8c65b59-5fa1-5a78-934a-2709d34254a0", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5270d963-0f53-56d8-a826-8e78d47a8ebf", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-aspects 5.2.0.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4270e523-35d8-548c-aa67-de153d632a0e", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d208694d-49cc-510b-8bf6-a8600a9e64d7", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c8cb6166-85ce-5a14-8305-f28f5692cea2", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b902df4d-115d-5661-ab51-8e7a329c90da", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8687d6a8-f9aa-5a2f-9fb6-a3b3617de44b", "id": "CVE-2025-41249", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41249 is a false positive for org.springframework:spring-aspects 5.2.0.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0dc8138a-281f-5950-8f35-b3faf409aff5", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 5.2.0.RELEASE-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.2.0.RELEASE-tuxcare.3" } ] }