{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:60d28fd1-1204-59ea-bd3c-4ff22f9e705d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-aspects", "version": "5.3.7-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6b7d7dac-68ed-548a-a420-04a6e4ea1a44", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c15f4654-cd23-55ab-bc8a-f9a40cc36ae6", "id": "CVE-2021-22060", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22060 affects version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:61de68c6-239f-501e-8992-c17416145b09", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cb45b81f-0df7-5e00-a78d-653262194109", "id": "CVE-2022-22950", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22950 affects version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c67be3d9-181a-570f-8c26-fcec221471fd", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0fdad874-cd4b-5f99-ab6f-4c18b15412b2", "id": "CVE-2022-22968", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22968 affects version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7539ffab-df70-5557-93fe-3a8981adf0f8", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:69e71e80-74a7-5b97-86c9-71bc1368b63a", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bc4b78ef-e002-5217-94cd-a060ffbb2417", "id": "CVE-2023-20860", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20860 affects version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:823e98f0-e3d8-5bfa-aeb6-d0caed9db995", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5b5ca7e0-48e4-553a-b3af-7770a94cb46e", "id": "CVE-2023-20863", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20863 affects version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b74a28b-60b4-5f4c-ac2f-cbecaf8ac802", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2754eb73-e8ae-5dac-a3af-7b71402843c1", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:935f4960-01b4-5c76-86f0-6bfc2c126dea", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:01e878e4-fc1e-538c-ad69-f7baee450455", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62a311e0-7b9f-5f7a-98bd-c2ed151ebbf0", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1506632d-adff-5677-a241-03e708df4062", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7dcbe438-3fc9-51dd-ad77-58fc883f3c01", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5ccd3a95-8169-56c1-be96-5dd32ae095e2", "id": "CVE-2024-38820", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38820 affects version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:873721fb-dc71-52ca-a959-b9ef785701fb", "id": "CVE-2024-38828", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38828 affects version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db919c22-693e-5e7e-b568-f1fb2a339318", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0feb526d-b3f8-57b5-90bc-2655c2b3d8b7", "id": "CVE-2025-41234", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41234 is a false positive for org.springframework:spring-aspects 5.3.7-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0eb7824e-edc6-5787-b7da-8d017d810068", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:94b76072-ca85-5c61-9592-ddd72d34d554", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5850280c-73ec-5689-a5c8-5a55afda5d4a", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e513ea23-6c00-517c-a2dd-6a7fc2a7f414", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aaf45154-d1b5-5e3d-b40e-fe534eb5b0ad", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.7-tuxcare.1 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.1" } ] }