{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9cfb37ad-97a4-5b71-a215-da27085302c0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.security/spring-security-aspects@5.7.12-tuxcare.3", "type": "library", "group": "org.springframework.security", "name": "spring-security-aspects", "version": "5.7.12-tuxcare.3", "purl": "pkg:maven/org.springframework.security/spring-security-aspects@5.7.12-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:cf51b3bb-1889-5dfd-b821-e30885d708fb", "id": "CVE-2007-1651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1651 affects version 5.7.12-tuxcare.3 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@5.7.12-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:323f3aef-3a65-5087-b2ee-eee3a92e25fa", "id": "CVE-2007-1652", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1652 affects version 5.7.12-tuxcare.3 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@5.7.12-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0be07be1-414a-5ec2-9fca-ba80b8f45f2d", "id": "CVE-2023-34042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34042 affects version 5.7.12-tuxcare.3 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@5.7.12-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ffa5a091-c3a4-51b0-bcab-9c7c8507ff6e", "id": "CVE-2024-38821", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38821 is fixed in version 5.7.12-tuxcare.3 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@5.7.12-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2e3c5986-b38a-52da-876f-754f0b728ff4", "id": "CVE-2024-38827", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38827 is fixed in version 5.7.12-tuxcare.3 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@5.7.12-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:83914b89-4c3c-571b-b036-6d5ced06b411", "id": "CVE-2025-22228", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22228 is fixed in version 5.7.12-tuxcare.3 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@5.7.12-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:62e42956-15ec-5f69-b0c3-053caa5fd1c5", "id": "CVE-2026-22732", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22732 is fixed in version 5.7.12-tuxcare.3 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@5.7.12-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:23192f26-d2af-5c93-8e81-9859871e5966", "id": "CVE-2026-22746", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22746 affects version 5.7.12-tuxcare.3 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@5.7.12-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f1498552-c209-500f-be48-441999ca5d73", "id": "CVE-2026-22747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22747 affects version 5.7.12-tuxcare.3 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@5.7.12-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:54dd8098-6805-5176-882e-069b4cd26707", "id": "CVE-2026-22748", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22748 affects version 5.7.12-tuxcare.3 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@5.7.12-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:acc0e115-5046-5d87-8e27-6750de61c445", "id": "CVE-2026-22753", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22753 affects version 5.7.12-tuxcare.3 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@5.7.12-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cf1c0d85-6939-52ab-a9e8-55429ecdb9fd", "id": "CVE-2026-22754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22754 affects version 5.7.12-tuxcare.3 of org.springframework.security:spring-security-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@5.7.12-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.security/spring-security-aspects@5.7.12-tuxcare.3" } ] }