{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b4b0320b-87c4-5fa3-b686-13d90884d546", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-aop", "version": "4.0.0.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:78f5d41a-8a14-53ce-8603-abdc299a2510", "id": "CVE-2014-0054", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0054 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7fa8ee3e-00f3-540b-ab64-b851daf5c029", "id": "CVE-2014-0225", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0225 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4c5653c7-b786-5a66-8bd9-127f6004246b", "id": "CVE-2014-1904", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-1904 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1aa79e4b-d2b5-59ba-8c51-c2aa589a98c9", "id": "CVE-2014-3578", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3578 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3d52adc9-19b0-58c2-9211-2caf187ebadb", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6efc4179-6e0d-54f1-9ae9-addd86def455", "id": "CVE-2015-3192", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-3192 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f902d077-58b6-5d72-8d5f-d2e3eaa5d4dd", "id": "CVE-2015-5211", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-5211 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7a259296-9f14-5ea8-9578-394aba0c5f9f", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2bb93140-5b78-575a-b260-9be5dd8e49a9", "id": "CVE-2016-5007", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-5007 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d4bace42-e120-5f2a-a688-3087699f2ec1", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:33e9100e-3032-5c61-ac20-636cbae8d505", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:46ab3bc8-1f2f-5d42-a8f9-261b0518f06b", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:469c43e9-06e0-5835-a949-c1a847d5270c", "id": "CVE-2018-1257", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1257 is a false positive for org.springframework:spring-aop 4.0.0.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c3f8842f-ec7a-5197-b46f-7d998efb430b", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6b89b222-4688-5054-81c9-e7792673957f", "id": "CVE-2018-1271", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1271 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c619eb41-addb-52ab-b192-a89fe4b9bf0f", "id": "CVE-2018-1272", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1272 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8b0bce2e-2349-55c2-9d6d-4c03131b4e8a", "id": "CVE-2018-1275", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1275 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:57f3e77f-d832-50bf-b6a2-f070a8438448", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:caef33d4-d486-5bb1-afa5-1392d78587d0", "id": "CVE-2021-22060", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22060 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bd3c543f-d378-52ff-a47c-b097004c5ba0", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:030ef323-dbb9-5997-a2a6-68da8f8d1ec5", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:32c5fdc0-85e3-56b2-a606-5e981ce15dac", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aadf4fa5-0b73-59f9-9466-4ecef99b3e77", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a71b22c1-378a-5a7c-855f-696df2190f99", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fbe8ea03-bd16-5a17-afcf-9082d7693b7a", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:224e8623-3ab4-5717-a264-09d5786ffcbf", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6ec2e279-1913-50c5-afc4-285588d477c1", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:72354a21-0ea2-563b-aa47-5a17ab2d2aff", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3c4a59e4-45a5-5d67-bd96-b20ba7586873", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:22011d12-2bfe-5619-b139-90b4fa56dc35", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:03c0617b-85f7-5a8e-b9f3-82a32a89215a", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ef91b65f-6d70-5906-8497-a002bc9656c9", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f2e56c1a-373b-54d8-abef-efa212f8bee9", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cd8a685b-fc11-509b-a864-48721695f570", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bf878c5b-89e4-552e-8acc-b92d2269cc5e", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f6b32b52-3ab2-5bee-a5d3-ebbc0258b05b", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fb5fc5a2-18f3-5ad1-a944-25f54e4bf243", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e98ae693-fbb0-50bb-9d21-29a8d497435c", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:377f98f1-63fd-5c0f-a13c-4bb32af49862", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f86420b5-cf8b-5fbc-975d-aaa62fb70654", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:439341ca-3110-55df-abf6-be5445d15987", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 4.0.0.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.3" } ] }