{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:79688ee3-0019-5972-a847-c4fe6b306c50",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:maven/org.springframework/spring-aspects@6.1.20-tuxcare.1",
      "type": "library",
      "group": "org.springframework",
      "name": "spring-aspects",
      "version": "6.1.20-tuxcare.1",
      "purl": "pkg:maven/org.springframework/spring-aspects@6.1.20-tuxcare.1"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:ae3d4547-b0e8-5f82-b3d0-7d4ce585c0a0",
      "id": "CVE-2025-22233",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-22233 affects version 6.1.20-tuxcare.1 of org.springframework:spring-aspects."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-aspects@6.1.20-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:17e6e9d5-8b13-5d02-b4b3-5d9e74470f95",
      "id": "CVE-2025-41234",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.1.20-tuxcare.1 of org.springframework:spring-aspects."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-aspects@6.1.20-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:b5afe8e0-0093-5185-bb7d-180a96d01428",
      "id": "CVE-2025-41242",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-41242 affects version 6.1.20-tuxcare.1 of org.springframework:spring-aspects."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-aspects@6.1.20-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:a9463a7a-496c-5a41-97e6-f31e14786fef",
      "id": "CVE-2025-41249",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-41249 affects version 6.1.20-tuxcare.1 of org.springframework:spring-aspects."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-aspects@6.1.20-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:87c8de9a-2ce7-58dd-81b7-650d6f818107",
      "id": "CVE-2025-41254",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-41254 affects version 6.1.20-tuxcare.1 of org.springframework:spring-aspects."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-aspects@6.1.20-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:ce60145c-8805-578d-bed2-d6cdc1de93dc",
      "id": "CVE-2026-22735",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-22735 affects version 6.1.20-tuxcare.1 of org.springframework:spring-aspects."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-aspects@6.1.20-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:16506cfd-9322-5ea7-8aec-69a887015b67",
      "id": "CVE-2026-22737",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-22737 affects version 6.1.20-tuxcare.1 of org.springframework:spring-aspects."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.springframework/spring-aspects@6.1.20-tuxcare.1"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:maven/org.springframework/spring-aspects@6.1.20-tuxcare.1"
    }
  ]
}