{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c96c6e38-ce16-58bf-aa70-e3f4e4d65d4f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1", "type": "library", "group": "org.springframework", "name": "spring-aop", "version": "5.3.25-tuxcare.1", "purl": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a02e8c48-db1f-5506-9786-9bbdb78e9fbd", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 5.3.25-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c2f94e05-4508-5af5-9db1-be01fc3ca361", "id": "CVE-2023-20860", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20860 affects version 5.3.25-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:73fcbf67-1378-5d48-9380-b3d484261657", "id": "CVE-2023-20861", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-20861 affects version 5.3.25-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b12c2471-ca32-5b8f-a29f-657498eed6cb", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:67658023-4fe8-5b48-80e5-044206a2bff5", "id": "CVE-2024-22243", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22243 affects version 5.3.25-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f13d9c9d-3f85-5aab-ad7e-ef70731217c1", "id": "CVE-2024-22259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22259 affects version 5.3.25-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a930d66-bb9d-59a4-a365-00bcb898eab7", "id": "CVE-2024-22262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22262 affects version 5.3.25-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:66835be8-bda4-58eb-b83d-b6a96a4f3dc8", "id": "CVE-2024-38808", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38808 affects version 5.3.25-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:811c1330-d339-5ee0-8f1a-5d097114929d", "id": "CVE-2024-38809", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38809 affects version 5.3.25-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e48c2474-38ec-50e1-8f96-f36456447b42", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 5.3.25-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:127b4457-4655-51d3-a6d4-cfac58aef08c", "id": "CVE-2024-38819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38819 affects version 5.3.25-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fb894779-1022-508a-87d8-36744fde0a1f", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:09938681-ee87-5e44-8853-af1e1c9daa06", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:300b0e92-eb54-500b-b78d-1bcb9296df98", "id": "CVE-2025-22233", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22233 affects version 5.3.25-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ed89dcb-c7dc-52c3-a020-d367d9310042", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 5.3.25-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7bc5f509-1e1a-5ad0-a97f-4d2e535ecd85", "id": "CVE-2025-41249", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41249 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:997479ee-6f90-5497-92f4-5496e79a676b", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 5.3.25-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a958c28-649f-5ead-b5a2-0f28520fdca0", "id": "CVE-2026-22735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22735 affects version 5.3.25-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a53ee30c-f02d-5baa-95c2-946b33f88cf1", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 5.3.25-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62caf6d4-1e72-5a66-a45f-9a24d965fc06", "id": "CVE-2026-22740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22740 affects version 5.3.25-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:077ad324-7a49-5100-ae7d-8817d45aae5a", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 5.3.25-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a856717c-94b3-55d0-b2cd-b4b1bec24c71", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 5.3.25-tuxcare.1 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-aop@5.3.25-tuxcare.1" } ] }