{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:593a97d4-26f6-5a37-bf5a-fe1c4a12c2ef", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-aop", "version": "6.0.23-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3a64d47b-eb34-5d23-98b1-54e37db79055", "id": "CVE-2024-38816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38816 affects version 6.0.23-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:979e00a1-a2b5-56f4-b702-5f233fb1888f", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d48d8ba4-4f69-52ea-8463-4f86ae1c9177", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d2ec50a4-c01c-5359-ac21-9d9c6cfbc3f1", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c47c76eb-dd61-57b7-8931-1731ffeadf50", "id": "CVE-2025-41234", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41234 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f56fd36a-586b-5eb5-8ac2-be3750f2c63d", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 6.0.23-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ab5cfa29-c8df-5f71-acc1-40ab41e3d6ac", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 6.0.23-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1450416e-95e7-587c-a215-9d1d695a9c30", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 6.0.23-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2e31d367-ebcc-5fb8-8171-202ce655d7e0", "id": "CVE-2026-22735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22735 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3e4b94be-8481-5226-b9a2-128dce46bc54", "id": "CVE-2026-22737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22737 affects version 6.0.23-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2b9e9376-08af-5297-ac8a-1bb9b25eff5a", "id": "CVE-2026-22740", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22740 is fixed in version 6.0.23-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d76a00bf-e391-5e99-8055-a616621c8d43", "id": "CVE-2026-22741", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22741 affects version 6.0.23-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:96bfdfb3-8b3a-5bdb-8960-073d0128dda0", "id": "CVE-2026-22745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22745 affects version 6.0.23-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-aop@6.0.23-tuxcare.2" } ] }