{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:aa480a73-e92e-573c-812e-3a23100a4c00", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-aspects@5.3.37-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-aspects", "version": "5.3.37-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-aspects@5.3.37-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7e90a047-700c-5f2d-aa0a-265fc690c385", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.37-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.37-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:42968538-1ad8-5912-9275-1e65122d7762", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.37-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.37-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ddeed4c5-690e-5575-9de0-4e54566b0189", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.37-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.37-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8a14c51e-5988-517e-aff2-d1b1ba0532ff", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.37-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.37-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:42681173-9e5e-57f9-ac2a-bbd4181f6c2b", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.37-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.37-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fd81a206-2a6b-576b-a279-4cce53aaeded", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.37-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.37-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9abd948f-5179-582f-99b2-515b05522afb", "id": "CVE-2024-38828", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38828 affects version 5.3.37-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.37-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d8c7d882-548b-57a8-ae51-7a8c8d6e5c82", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.3.37-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.37-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f042e74f-16aa-544a-9a05-cd58d58b5618", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 5.3.37-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.37-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:56151f5f-1547-517c-9482-329b804c2d3f", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.37-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.37-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a5b1c94e-c984-51b0-b442-aa09c863e953", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 5.3.37-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.37-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2ac2193d-43eb-5621-92f1-f1b6b26d72d6", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.37-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.37-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c250454f-23af-56db-b3cf-3c101133e254", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.37-tuxcare.3 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.37-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.37-tuxcare.3" } ] }