{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:97a75c98-259d-5776-beae-be9f6643e2ad", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-aop", "version": "4.1.7.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2550e569-b4c1-5622-8d40-383254d1b60e", "id": "CVE-2015-5211", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-5211 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:68d5201d-52a8-5a08-9563-b59936c04c6a", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d2877208-769c-561e-a092-aae097654a87", "id": "CVE-2016-5007", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-5007 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:846058b8-a17d-5fed-9d7a-9f90aef97a23", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:de277a8c-6fef-5b82-a317-e1fc7d17672f", "id": "CVE-2018-11040", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11040 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e318aa56-0e26-5b38-adf1-1d61b07ca6ee", "id": "CVE-2018-1257", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1257 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9060e014-f359-59bf-bc03-d9502e1b2513", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7edf2542-6040-58d0-bc36-bc93a342afe8", "id": "CVE-2018-1271", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1271 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:474ca399-8bac-5833-9574-bbd49abd716d", "id": "CVE-2018-1272", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1272 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7a8e2685-4416-5616-990c-1ba4a1f202cd", "id": "CVE-2018-1275", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1275 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:841292b3-6896-53f5-a610-45ab41529862", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cb81ee05-2792-5f3d-9402-14c27784af5f", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0a15f296-8504-51d2-a9e3-121fec24b77e", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:24556349-fb3d-509c-9dfd-581bafb9e859", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cb0a64fe-4810-5f82-8111-686752039eb8", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8cd7e9a7-e48b-5ccb-aa9c-28613ff5bfd1", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1e8327e3-b4aa-57ea-a590-55a9af2c982a", "id": "CVE-2022-22970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22970 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dbbb765d-6813-56ff-8919-2143d5b7d43f", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:63e049e7-034b-5888-befa-85898e6583ce", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:84a4171b-c9e6-5037-bc68-9df54ba075dc", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5c1f42f2-0f3c-5066-b808-de4fa021f57e", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5c54f5ef-365f-5426-9a16-02e41c358259", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2ff53b4f-bea0-5930-8b74-8cfee24a18eb", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7cfdd9ab-c0d1-5a3c-8b29-bcfa99776afd", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e7760efe-b201-5c6d-ad5a-adbd1189768b", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a2aa0887-04ca-580b-bdbd-d64abc8f87ba", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5cc794c8-39c6-549e-a71b-012676960cca", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:20d82a23-a2bb-5b0f-b345-dad22dba2007", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:31079c89-9449-5939-b092-9e50843f4ed6", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fa0d7a40-d09d-5d2d-bcbd-2190d7823dcd", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 4.1.7.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.1.7.RELEASE-tuxcare.3" } ] }