{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e7b0cbe4-2f4c-5543-94f6-59238a68c057", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.3.tuxcare.1", "type": "library", "group": "org.apache.hadoop.contrib", "name": "hadoop-hdfs-bkjournal", "version": "2.7.3.tuxcare.1", "purl": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.3.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3353abbc-07fb-58f7-be59-4c813d9d3a01", "id": "CVE-2016-6811", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6811 affects version 2.7.3.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.3.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d6aa3a00-81ab-5b36-97d3-3f1f8110b478", "id": "CVE-2017-15713", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-15713 affects version 2.7.3.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.3.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:25a3f0d4-f714-5677-a544-708c4ce5aa15", "id": "CVE-2017-15718", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-15718 affects version 2.7.3.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.3.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d5b24caf-74b2-5cd6-ad69-c43a21ca0b40", "id": "CVE-2017-3166", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3166 affects version 2.7.3.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.3.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9dfb28f5-4d93-528a-bff0-0f08b5288103", "id": "CVE-2017-7669", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7669 affects version 2.7.3.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.3.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:daaad021-09a8-5223-a262-edff1ad4174b", "id": "CVE-2018-11765", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11765 affects version 2.7.3.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.3.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:521dafbf-0eac-57d0-b46b-354d697cb8b6", "id": "CVE-2018-11766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11766 affects version 2.7.3.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.3.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b1ae188b-b569-532f-a170-5f7687a73d87", "id": "CVE-2018-11768", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11768 affects version 2.7.3.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.3.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a66025d4-7328-5b25-96ec-16c37cabe5df", "id": "CVE-2018-1296", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1296 affects version 2.7.3.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.3.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77378c8b-445d-526c-b523-aa80fac2411b", "id": "CVE-2018-8009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8009 affects version 2.7.3.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.3.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b30b709-ff4f-5325-b178-c2ab31386479", "id": "CVE-2018-8029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8029 affects version 2.7.3.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.3.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a4b20177-d633-55c5-85d8-e2a6eadc6707", "id": "CVE-2020-9492", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9492 affects version 2.7.3.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.3.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d46bf862-467f-5344-9a4a-51c737992cfd", "id": "CVE-2021-25642", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-25642 affects version 2.7.3.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.3.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ce469d2e-b39f-590d-9b38-42b3084487a9", "id": "CVE-2021-33036", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-33036 affects version 2.7.3.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.3.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5abdb84f-17f5-518a-9392-43c652be461a", "id": "CVE-2021-37404", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-37404 affects version 2.7.3.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.3.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b5b7b81e-7588-5d2d-8f97-17ebdd29e033", "id": "CVE-2022-25168", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-25168 affects version 2.7.3.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.3.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f336f895-5ba1-517f-b8d4-30e75488c2a8", "id": "CVE-2022-26612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-26612 affects version 2.7.3.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.3.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2059fde5-43a7-5d99-8de9-8a84f7b475da", "id": "CVE-2024-23454", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23454 is fixed in version 2.7.3.tuxcare.1 of org.apache.hadoop.contrib:hadoop-hdfs-bkjournal." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.3.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.hadoop.contrib/hadoop-hdfs-bkjournal@2.7.3.tuxcare.1" } ] }