{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b4bcbcdb-203b-5f25-8e43-7b2666164005", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.1.tuxcare.1", "type": "library", "group": "org.apache.hadoop.contrib", "name": "hadoop-hdfs-bkjournal", "version": "2.7.1.tuxcare.1", "purl": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.1.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8d77dd88-f8a0-573e-8992-30e596a80e09", "id": "CVE-2016-3086", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-3086 affects version 2.7.1.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d909531-45fd-541e-b648-aa2d1afb4249", "id": "CVE-2016-5001", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5001 affects version 2.7.1.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c1c4eca7-d109-5378-bfa8-2c734a31a633", "id": "CVE-2016-5393", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5393 affects version 2.7.1.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:df4edeed-d138-5c54-a04d-27e8f7381c60", "id": "CVE-2016-6811", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6811 affects version 2.7.1.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:de299af5-5ff3-52d1-b613-ebd1485c6370", "id": "CVE-2017-15713", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-15713 affects version 2.7.1.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f817f960-70a4-5162-b4ed-a018f484487b", "id": "CVE-2017-15718", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-15718 affects version 2.7.1.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ff36dcf2-cb0f-5b62-8a56-3639e2ed90bf", "id": "CVE-2017-3166", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3166 affects version 2.7.1.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ea9884ad-b5f9-583b-a5eb-5f1d7592af3d", "id": "CVE-2017-7669", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7669 affects version 2.7.1.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:17304dee-5905-5e8a-97b7-c7cbf34ec857", "id": "CVE-2018-11765", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11765 affects version 2.7.1.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f0dcfc32-13d7-5290-9a81-7513e6073986", "id": "CVE-2018-11766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11766 affects version 2.7.1.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bff93b88-d649-5dae-80ae-a8b2ef7aeb9c", "id": "CVE-2018-11768", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11768 affects version 2.7.1.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1065d731-f1c6-5556-af0b-929db59d7ed3", "id": "CVE-2018-1296", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1296 affects version 2.7.1.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e995d040-6f49-5058-a0cd-547910fac5ff", "id": "CVE-2018-8009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8009 affects version 2.7.1.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9bfeb17c-54f5-5b12-8f11-8db519363751", "id": "CVE-2018-8029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8029 affects version 2.7.1.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:189fa542-d0ac-5eaa-ad5e-fac6c2769cba", "id": "CVE-2020-9492", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9492 affects version 2.7.1.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1479c72b-3a4c-517f-9079-0197fd323a6d", "id": "CVE-2021-25642", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-25642 affects version 2.7.1.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:181fd2c5-ab1b-5971-bb28-09ab669aa228", "id": "CVE-2021-33036", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-33036 affects version 2.7.1.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a1a8cb50-d1f4-57d9-85b3-06a06799b9dc", "id": "CVE-2021-37404", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-37404 affects version 2.7.1.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:658cd4ba-d0db-51f0-a5ec-a3ffa1439834", "id": "CVE-2022-25168", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-25168 affects version 2.7.1.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f1b9156c-46c8-5bdb-9823-21155b11f178", "id": "CVE-2022-26612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-26612 affects version 2.7.1.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fb5af0bc-b790-5f73-9d35-921f3aa8b11c", "id": "CVE-2024-23454", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23454 is fixed in version 2.7.1.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.1.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.1.tuxcare.1" } ] }