{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:58ea57ea-32b0-5ff5-86f5-a67198d98f1f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-aop", "version": "3.1.1.RELEASE-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:131464bd-7902-5f01-94a6-dc5a9917b5ab", "id": "CVE-2013-4152", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-4152 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:70bc3400-bb92-5ffa-9e2d-a1a0370d534b", "id": "CVE-2013-6429", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6429 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e95f6521-bd51-57e1-a6ba-5260d73b37f3", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:160f3390-5754-5d48-9873-1779e2cf51c1", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:48bce783-ce0e-51c4-8912-ea4093b180ce", "id": "CVE-2014-0054", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0054 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3bbf38e2-19d0-5033-8dac-a7f22ee73965", "id": "CVE-2014-0225", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0225 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8094e2a2-529f-509b-839d-2bfb23b5af48", "id": "CVE-2014-1904", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-1904 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7adfeb86-25cd-5e05-bb44-974868804ca2", "id": "CVE-2014-3578", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3578 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:30db91f0-c1fb-522c-953b-752359bb2eca", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2c0dbb42-dafb-51eb-9577-afc6710c2000", "id": "CVE-2015-3192", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-3192 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0ed869ee-3a5a-5622-93aa-f1c081f60442", "id": "CVE-2015-5211", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-5211 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1d623c70-a194-5990-add1-c836ded5085d", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:719b9358-3ed5-5c79-a22d-8c55dfa5c799", "id": "CVE-2016-5007", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-5007 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:14c95a0c-6958-5cc0-b569-9d40fab50174", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d74dfe55-aaf5-5e47-b143-ecb709b25b35", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:485e5c01-9b07-5a05-9a48-726cf738b93f", "id": "CVE-2018-11040", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-11040 is a false positive for org.springframework:spring-aop 3.1.1.RELEASE-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ec94ea02-27b6-5f72-9458-653d9f0d3f58", "id": "CVE-2018-1257", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1257 is a false positive for org.springframework:spring-aop 3.1.1.RELEASE-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d8408c74-0475-573b-838b-9e355a2b8361", "id": "CVE-2018-1270", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1270 is a false positive for org.springframework:spring-aop 3.1.1.RELEASE-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:16ef70c3-c796-5746-9cbf-6904a7db2547", "id": "CVE-2018-1271", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1271 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b840f90-f1ce-56a1-9fc7-d70e82739e07", "id": "CVE-2018-1272", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1272 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:435f1df8-94df-5bf1-8f00-aa6ffb979c06", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a2e9ea09-8c07-5b7b-be43-fe74cd481d4a", "id": "CVE-2021-22060", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22060 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3fe0fa9f-37ad-56e0-b2ee-a54fc5eeffbb", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7574cc0d-7454-5c0d-9c53-b6925d6bda8c", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a0ecd10f-cf90-5416-a898-8e11da27bb6b", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b98ba408-5421-5aa3-bd06-15d54caea50f", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:18b404b7-9d6c-530a-a5de-a5a3c53df9cc", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9a4ffad3-f7ef-5e87-bfff-b2cc65f6d507", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:907c9d3d-9bd1-5df1-bd8b-17ab9b50231a", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ce4eb41a-a1b4-5d47-ba81-8ca6ea60ae93", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:17e3f336-bf3e-56ce-ac18-b27fd85e9570", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a5eddf88-3597-5678-b43f-342bc1763306", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6cb33f5e-3343-5513-8fee-e6ef78527fe8", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a0ef8be9-a43d-5b06-be7b-8ca885bd5b5b", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b8b74b79-6da5-5c0b-a06c-6e3d4079ebe0", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:acac712d-be5f-53a0-9cdf-d25304185457", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:42fb12f4-e922-596a-bdbc-70399e5abe34", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c2db47ce-d993-5740-ae70-a6977327306d", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:40994759-ea6a-5bea-a10b-b4954e0241a8", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f26e1e57-4ac8-5aa9-8c5e-9d483e0849da", "id": "CVE-2025-41242", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41242 is a false positive for org.springframework:spring-aop 3.1.1.RELEASE-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b837af49-a42a-52a8-9afc-116282ff0595", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:13120003-8bd3-5546-a2b9-6b7b4726d83d", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6b6c1e5c-0cb4-5fc3-9021-b4bce37d8c69", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-aop@3.1.1.RELEASE-tuxcare.2" } ] }