{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f2bab3ee-3fef-583f-8cf5-d2107274df53", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/ch.qos.logback/logback-classic@1.2.13.tuxcare", "type": "library", "group": "ch.qos.logback", "name": "logback-classic", "version": "1.2.13.tuxcare", "purl": "pkg:maven/ch.qos.logback/logback-classic@1.2.13.tuxcare" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:37842d21-0422-51fe-afea-659b3f7251a0", "id": "CVE-2024-12798", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-12798 is fixed in version 1.2.13.tuxcare of ch.qos.logback:logback-classic." }, "affects": [ { "ref": "pkg:maven/ch.qos.logback/logback-classic@1.2.13.tuxcare" } ] }, { "bom-ref": "urn:uuid:b3303de9-04d3-5ee1-a58d-6f82389c4bd7", "id": "CVE-2024-12801", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-12801 is fixed in version 1.2.13.tuxcare of ch.qos.logback:logback-classic." }, "affects": [ { "ref": "pkg:maven/ch.qos.logback/logback-classic@1.2.13.tuxcare" } ] }, { "bom-ref": "urn:uuid:063936e4-f38b-542f-8f4f-0f944236ea90", "id": "CVE-2025-11226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11226 affects version 1.2.13.tuxcare of ch.qos.logback:logback-classic." }, "affects": [ { "ref": "pkg:maven/ch.qos.logback/logback-classic@1.2.13.tuxcare" } ] }, { "bom-ref": "urn:uuid:4d5d2423-67e2-5b78-aa1f-0725c29333a9", "id": "CVE-2026-1225", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1225 affects version 1.2.13.tuxcare of ch.qos.logback:logback-classic." }, "affects": [ { "ref": "pkg:maven/ch.qos.logback/logback-classic@1.2.13.tuxcare" } ] } ], "dependencies": [ { "ref": "pkg:maven/ch.qos.logback/logback-classic@1.2.13.tuxcare" } ] }