{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9f7743f4-3e34-5c95-b348-d4e09d7bda36", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/ch.qos.logback/logback-access@1.4.14-tuxcare.1", "type": "library", "group": "ch.qos.logback", "name": "logback-access", "version": "1.4.14-tuxcare.1", "purl": "pkg:maven/ch.qos.logback/logback-access@1.4.14-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b1da8dbf-6f5e-5e54-a6c5-5c0b7f9e7510", "id": "CVE-2024-12798", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-12798 is fixed in version 1.4.14-tuxcare.1 of ch.qos.logback:logback-access." }, "affects": [ { "ref": "pkg:maven/ch.qos.logback/logback-access@1.4.14-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:41d82920-ae74-536f-80eb-87af3dd97436", "id": "CVE-2024-12801", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-12801 is fixed in version 1.4.14-tuxcare.1 of ch.qos.logback:logback-access." }, "affects": [ { "ref": "pkg:maven/ch.qos.logback/logback-access@1.4.14-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0f543dc8-fb52-570a-94bb-cc588e1254c1", "id": "CVE-2025-11226", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-11226 is fixed in version 1.4.14-tuxcare.1 of ch.qos.logback:logback-access." }, "affects": [ { "ref": "pkg:maven/ch.qos.logback/logback-access@1.4.14-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6128fcb1-b2f8-574d-a255-95f4635bebe0", "id": "CVE-2026-1225", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1225 affects version 1.4.14-tuxcare.1 of ch.qos.logback:logback-access." }, "affects": [ { "ref": "pkg:maven/ch.qos.logback/logback-access@1.4.14-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/ch.qos.logback/logback-access@1.4.14-tuxcare.1" } ] }