{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:98d785fb-7e9d-5253-85c7-28b3210e8d24", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-aspects", "version": "5.3.7-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:bc17415e-05d6-5c93-8bdf-6eaf600bfbac", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1207a086-4cb2-55f0-8f89-d1c9abcf8f92", "id": "CVE-2021-22060", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22060 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7d1b8871-bc56-5825-84c6-f734ee567e05", "id": "CVE-2021-22096", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-22096 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3c396ee7-981c-5665-8e17-d404c4b33064", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e3b1302a-c9f3-5d1b-a600-a1cef9d8fe74", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:68126845-4feb-5cb6-bb4f-0e68bbc7e3f1", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d7a4a646-def3-5b2b-8cdc-dc53aee5ef21", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aac43cfe-64dc-5c22-99a4-9e728516086d", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:de31267e-40f4-56f9-8c87-6952057e94e0", "id": "CVE-2023-20860", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20860 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bd40e15d-cd24-52d2-851c-5626070c1d83", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8c1f6859-9491-590c-a607-a0b6efd3b4fa", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b2954883-4b86-5716-86c4-926775bb9c32", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0d8d500d-bbb9-5386-a0f7-6beffa666901", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:82623a9d-4515-5eed-8889-7bd0c8df8240", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:83dace0f-982d-5701-b9bf-a9513bafd820", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2cf92f12-b0bf-55b1-9205-38167bbf7b6e", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8efd199c-2ed1-5ae1-bfcb-3f97445c41ef", "id": "CVE-2024-38816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38816 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ecced7a4-151c-5f81-aadd-bdca1b8214f4", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cd8a5a2e-3ee7-53be-887c-d745be679fd8", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:420e93f5-4862-5688-90aa-32e83db16c40", "id": "CVE-2024-38828", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38828 affects version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4026e626-a445-54e3-a49b-3d8d10c4f2bd", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:14e4244a-4919-5c32-a096-d0693feae9d0", "id": "CVE-2025-41234", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41234 is a false positive for org.springframework:spring-aspects 5.3.7-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3af5a8df-5f39-5620-9f99-e9240fb48a2e", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:381987df-bcc4-51b9-8c9b-859c51f89dad", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:604db164-e449-5278-b7fa-334d9a8428c9", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:22a567d9-6eec-57a2-83fe-2a19b4add755", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ac57df21-6c63-5c6c-8494-b7eb575f5092", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.7-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-aspects@5.3.7-tuxcare.2" } ] }