{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1d0cb77d-c5fc-5606-8151-a58edc5eeb52", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework.boot/spring-boot-starter-aop@2.7.18-tuxcare.12", "type": "library", "group": "org.springframework.boot", "name": "spring-boot-starter-aop", "version": "2.7.18-tuxcare.12", "purl": "pkg:maven/org.springframework.boot/spring-boot-starter-aop@2.7.18-tuxcare.12" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:24c6f16f-2ae1-55a2-92b8-f2e6f781064f", "id": "CVE-2023-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-38286 is fixed in version 2.7.18-tuxcare.12 of org.springframework.boot:spring-boot-starter-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-aop@2.7.18-tuxcare.12" } ] }, { "bom-ref": "urn:uuid:ff22de9a-f9d2-5854-aa5d-99569786ae7b", "id": "CVE-2024-38807", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38807 is fixed in version 2.7.18-tuxcare.12 of org.springframework.boot:spring-boot-starter-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-aop@2.7.18-tuxcare.12" } ] }, { "bom-ref": "urn:uuid:8f047ce1-61e7-58c1-bc80-eed3509f0769", "id": "CVE-2025-22235", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22235 is fixed in version 2.7.18-tuxcare.12 of org.springframework.boot:spring-boot-starter-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-aop@2.7.18-tuxcare.12" } ] }, { "bom-ref": "urn:uuid:dc433107-0afe-50e2-8d4c-14f2d8c7b635", "id": "CVE-2026-22733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22733 affects version 2.7.18-tuxcare.12 of org.springframework.boot:spring-boot-starter-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-aop@2.7.18-tuxcare.12" } ] }, { "bom-ref": "urn:uuid:3bf57f9a-dad4-541a-b62d-11586e4564dc", "id": "CVE-2026-40972", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40972 affects version 2.7.18-tuxcare.12 of org.springframework.boot:spring-boot-starter-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-aop@2.7.18-tuxcare.12" } ] }, { "bom-ref": "urn:uuid:e006695d-3790-59e5-aaf3-155c5789d064", "id": "CVE-2026-40973", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40973 affects version 2.7.18-tuxcare.12 of org.springframework.boot:spring-boot-starter-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-aop@2.7.18-tuxcare.12" } ] }, { "bom-ref": "urn:uuid:20f515cc-085d-553e-952a-57e2104f2eb2", "id": "CVE-2026-40974", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40974 affects version 2.7.18-tuxcare.12 of org.springframework.boot:spring-boot-starter-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-aop@2.7.18-tuxcare.12" } ] }, { "bom-ref": "urn:uuid:c42f4246-2d50-5e6f-ab08-29746c0cad33", "id": "CVE-2026-40975", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40975 affects version 2.7.18-tuxcare.12 of org.springframework.boot:spring-boot-starter-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-aop@2.7.18-tuxcare.12" } ] }, { "bom-ref": "urn:uuid:b21e768a-1c8b-5d34-a205-dc8a343c8f9b", "id": "CVE-2026-40977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40977 affects version 2.7.18-tuxcare.12 of org.springframework.boot:spring-boot-starter-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-aop@2.7.18-tuxcare.12" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework.boot/spring-boot-starter-aop@2.7.18-tuxcare.12" } ] }