{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4fdd9a7c-a804-5b7f-aacf-c052716da2ed", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-aspects", "version": "3.1.1.RELEASE-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:0861a1a8-7f5a-5236-8d0c-afbf18555079", "id": "CVE-2013-4152", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-4152 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7194ac12-a034-5b47-bed5-0fe19b74b3df", "id": "CVE-2013-6429", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6429 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:380033c5-036a-5453-a087-7b9589f96342", "id": "CVE-2013-6430", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2013-6430 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:32d53710-0ace-5941-97bf-bb873b05745f", "id": "CVE-2013-7315", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-7315 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e2d4b2a8-96bf-5c1c-abc4-8dad965be9b0", "id": "CVE-2014-0054", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0054 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9a4de0f2-b32d-5444-9eee-198d92db2f64", "id": "CVE-2014-0225", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0225 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:afa36b23-deda-54d8-a323-25296c894120", "id": "CVE-2014-1904", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-1904 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a191f696-1498-5ea4-b3f5-addb6bb04b6a", "id": "CVE-2014-3578", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3578 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:76289d0c-5e39-544a-83d5-3304c1f36fd0", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d5a212b1-a7dc-52c3-ab0f-eb2d31a91738", "id": "CVE-2015-3192", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-3192 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4b2c26ba-d847-5717-b842-a690a9d9b7be", "id": "CVE-2015-5211", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-5211 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7b165619-088b-5610-99f8-6a0382b705bc", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:309483e8-7d4e-548b-8e08-2b2f8f84b59f", "id": "CVE-2016-5007", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-5007 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7074015c-4fe9-519b-ba5e-124dc30633b5", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b590546-7067-526b-9e7a-5a1dc961fa78", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:797e27dc-b874-54f4-85bf-93712999502b", "id": "CVE-2018-11040", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-11040 is a false positive for org.springframework:spring-aspects 3.1.1.RELEASE-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4c49c251-026a-522d-950f-04acb74c193b", "id": "CVE-2018-1257", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1257 is a false positive for org.springframework:spring-aspects 3.1.1.RELEASE-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a7a3fe11-b5c7-5c00-be58-f0d702c8ab7b", "id": "CVE-2018-1270", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1270 is a false positive for org.springframework:spring-aspects 3.1.1.RELEASE-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6ee5c12e-4258-5abf-9c5d-82bb80cac419", "id": "CVE-2018-1271", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1271 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e1f2e5bb-bde0-5e56-a603-080891e6a82c", "id": "CVE-2018-1272", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1272 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:101166e1-7b5d-531b-90e5-d8e17779cb39", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4625160a-33e7-54dc-bbda-4167e06ebc21", "id": "CVE-2021-22060", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22060 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:00975031-59c2-521d-8787-6cdd520c4ce2", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8500505c-14fe-59ff-9cd5-016a77be968c", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a01efdcd-274f-57f1-b118-4bcf014a622b", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7347c631-8562-5adf-a71d-3391636b3e44", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:88b6892f-1577-5f01-936c-c873029dd0e0", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b2a4465-eeec-545b-ac6b-ad9c5968b81b", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c8c4e5fd-1002-5780-9da6-caebc48e333c", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:88a001cc-566b-592b-abbb-cfea1125e5a8", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:71d2c55d-e1de-588b-b743-d3f89d869bc7", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:422e1b80-9e8e-5a27-bd8f-44a00a495e22", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c153d41e-9f9f-5b37-abc1-581e474ca436", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:70334945-4d1e-5c1a-ad84-f72f573673b2", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f46c6def-4a0b-5891-9e11-eb835e152ee6", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:16e1b26d-de66-5367-a177-bf55c5c17ec4", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b6b89779-3de0-5649-8bae-4646c8ad89fb", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2596f949-427a-51cd-b7c1-a974be1014bc", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e981d7f8-4bb4-53fa-9d48-63f7f8dfbbf4", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cc11cf45-4307-5fb0-b9e2-4ccd75935ea8", "id": "CVE-2025-41242", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-41242 is a false positive for org.springframework:spring-aspects 3.1.1.RELEASE-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b117e394-6661-5fa0-994f-50231d6b4c01", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:65c7d150-c8ee-587b-8372-8b035b3aeedc", "id": "CVE-2025-41254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41254 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:709aca84-5fe6-552c-a8db-4cad1971e258", "id": "CVE-2026-22740", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2026-22740 does not affect version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects. CVE-2026-22740 is a WebFlux-specific vulnerability (reactive multipart temp-file cleanup in org.springframework.http.codec.multipart.MultipartHttpMessageReader / PartGenerator). Spring Framework 3.1.1.RELEASE predates WebFlux entirely - the org.springframework.http.codec package does not exist in this version, and there is no reactive multipart code path. Per NVD, affected versions are 5.3.x, 6.1.x, 6.2.x, 7.0.x only; Spring 3.x is not in the affected range." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6485ddba-8605-58e3-abdd-225cf89fc050", "id": "CVE-2026-41841", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41841 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:99b1b4ff-73e3-5780-ab75-2cdcf663d247", "id": "CVE-2026-41842", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2026-41842 does not affect version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects. not_affected \u2014 Spring Framework 3.1.1 is NOT affected by CVE-2026-41842. The vulnerability exists in content-based version strategies for static resource handling, a feature introduced in Spring Framework 4.1 (2014). Spring 3.1.1 (2011) predates this feature and contains no version removal logic in resource handling." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4a617c5d-4d0a-50ae-84b3-a78d0cb78ba0", "id": "CVE-2026-41843", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2026-41843 does not affect version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects. not_affected \u2014 Spring Framework 3.1.1.RELEASE is not affected by CVE-2026-41843. The vulnerability requires the content-based version strategy feature (VersionResourceResolver, AbstractVersionStrategy, etc.) which was introduced in Spring Framework 4.1+. This feature does not exist in version 3.1.1, making the attack chain impossible." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1ff8b4b2-f2ed-5130-b389-76c05bea07de", "id": "CVE-2026-41844", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41844 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:97971d70-cb00-5dc3-9856-6f212c3116b0", "id": "CVE-2026-41845", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2026-41845 does not affect version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects. not_affected \u2014 Spring Framework 3.1.1.RELEASE (2012) predates the ECMAScript 6 specification (2015) that introduced template literal syntax. While the code lacks escaping for backtick (`) and dollar sign ($) characters in JavaScriptUtils.javaScriptEscape(), these unescaped characters cannot lead to arbitrary JavaScript code execution in the pre-ES6 JavaScript environment this version was designed for. The att..." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:60a49383-6547-5c71-a924-e5092d806465", "id": "CVE-2026-41846", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41846 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6f2690f0-cdd7-551f-b117-2c6df3de66e0", "id": "CVE-2026-41848", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41848 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:447d7f49-1b99-58a1-91ed-cf2f8921148f", "id": "CVE-2026-41849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41849 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3e94629a-798c-56b2-9cbd-f027c03914e4", "id": "CVE-2026-41850", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41850 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:70f14924-b4af-5b52-a465-25f51dc79600", "id": "CVE-2026-41851", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41851 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c4c74362-6beb-5335-a3be-cdcb0bd86793", "id": "CVE-2026-41852", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41852 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:80ba3291-9d15-58fc-af0d-0c140f2993fe", "id": "CVE-2026-41853", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41853 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1f943a6a-3aa6-5149-bd77-d11117aaeda1", "id": "CVE-2026-41855", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41855 affects version 3.1.1.RELEASE-tuxcare.2 of org.springframework:spring-aspects." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-aspects@3.1.1.RELEASE-tuxcare.2" } ] }