{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:81a1d1e8-7345-5639-9118-04cd7832ccd4", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3", "type": "library", "group": "org.springframework", "name": "spring-aop", "version": "5.1.5.RELEASE-tuxcare.3", "purl": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9da859e4-a556-556f-9756-4b58be67fb09", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b17c22af-ace3-5230-9f2f-8dd4e2f81589", "id": "CVE-2020-5398", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-5398 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fb24a75e-0577-571f-8e7d-64ed197ea5fb", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b070c873-37c7-5d10-86f9-eefa67a12da9", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:46e93b45-bf2d-5bf1-a8d0-41c6aceb63b4", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:882bd60d-b084-5696-8ba5-84f771a85b39", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fe9e3403-dccc-546c-878f-824d3085ec47", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:490375e7-4ba4-5644-8811-82efefdaa951", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1a128f44-5cea-5d9b-bb9e-e7e9dcf851f3", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f715e15a-3500-56b6-8a12-982bdc2de11d", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:611ef846-246e-5428-9ec3-42c7e2400e9b", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4252550b-76ed-51a6-a398-c82d806144d3", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b1d76047-5746-5d78-a04b-c09646da0989", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4f74d458-3d36-5a02-af00-b57f97d3de07", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:33e94a05-8599-56cf-b81f-648d202023d2", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0c581a91-e6d6-58ad-a9da-b5ea6907f168", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:66997604-351c-5e52-9243-dc92a8f4e5f0", "id": "CVE-2024-38809", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-38809 is a false positive for org.springframework:spring-aop 5.1.5.RELEASE-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0d53971c-1a72-5474-b2c9-b281a8cfe7be", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:85f13441-6164-5535-afc5-95e4e91e957f", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f7a51e1a-cce6-58e9-b578-4a6db7ad6aa3", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ea9ef0e6-7c6c-5a46-8a4e-15992905dfa1", "id": "CVE-2024-38828", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38828 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:64c0d0fa-38d0-53ca-aa51-9cb02a60131c", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:935774b2-8f52-519f-afa8-cd8205492329", "id": "CVE-2025-41234", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41234 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:75193007-3dd5-51c6-a38c-75a61649b2cb", "id": "CVE-2025-41242", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41242 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bfd13557-e49c-544b-825b-01c5a00983ec", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:75d80b97-2cde-52c6-9726-bd061e4de9ec", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1663d154-d533-5073-ad0e-f86c7a1f7292", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5795f0a0-e4bb-51dc-8b7f-37200a2bee2d", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:86305e50-2119-571e-a4fc-026d6bc6cd7f", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:42bd9dd9-48f0-5a9f-bdd3-b8651dc2675e", "id": "CVE-2026-41838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41838 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ef0b6901-3e95-5a90-9051-b3ee67679b0a", "id": "CVE-2026-41839", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41839 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:16aa0c88-7a96-5c49-9649-301984e8ca5a", "id": "CVE-2026-41840", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41840 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:12917e55-cec5-5b40-ba33-824d57478bc2", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fe991dd6-858b-5ace-9418-bdaa85b1b595", "id": "CVE-2026-41842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41842 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ebbc6299-6bc1-5331-b23e-c01eba26e1cb", "id": "CVE-2026-41843", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41843 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:74ce2cd6-c57a-59a0-aef5-0d4ec0f9138f", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:538e0300-53d1-5f2c-8944-de93dfd8edd4", "id": "CVE-2026-41845", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41845 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4398fe49-b51a-5100-a9bc-df83444e0410", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:57720f24-97cc-5dc5-a9f7-1b73c721cd3f", "id": "CVE-2026-41847", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41847 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:59cf4cf3-2cd5-5156-856c-5a6b0e293b51", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:150fe3d9-8f7d-57f6-959d-469d805ecf08", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9626e720-6976-5f17-8ba4-4d899ecd4eb9", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d5c8add7-9f93-558c-a283-bef4ed87258e", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:345efc65-c058-5936-8110-a86ae7abe5a8", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b745480c-6521-5572-a260-8f19dcc9ba9f", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7cdd06f6-ddb4-5e83-847d-d693b1a5223d", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 5.1.5.RELEASE-tuxcare.3 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.1.5.RELEASE-tuxcare.3" } ] }