{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9d1786ed-e41c-5fde-a8d6-d23fcc3e409d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.hadoop/hadoop-nfs@2.7.1.tuxcare.1", "type": "library", "group": "org.apache.hadoop", "name": "hadoop-nfs", "version": "2.7.1.tuxcare.1", "purl": "pkg:maven/org.apache.hadoop/hadoop-nfs@2.7.1.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:644b5623-354f-5a67-8a62-2f685547608f", "id": "CVE-2016-3086", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-3086 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-nfs." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-nfs@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7a92e760-ddcd-540c-8ca2-f4eb89fbed47", "id": "CVE-2016-5001", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5001 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-nfs." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-nfs@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bc5ef9d7-c116-5c85-882a-e38cf1069b66", "id": "CVE-2016-5393", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5393 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-nfs." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-nfs@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e7838d7-b17b-57d6-b1ce-08847eb019df", "id": "CVE-2016-6811", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6811 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-nfs." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-nfs@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3324f1fc-7819-53c5-876d-a03d31113ccf", "id": "CVE-2017-15713", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-15713 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-nfs." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-nfs@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:69d80228-4a20-5f3d-8c22-f414686b46e0", "id": "CVE-2017-15718", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-15718 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-nfs." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-nfs@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8fbca88f-d717-56ad-8758-825069eee6c2", "id": "CVE-2017-3166", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3166 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-nfs." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-nfs@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:65da0a4b-b197-5f0d-bb54-136daea5a982", "id": "CVE-2017-7669", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7669 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-nfs." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-nfs@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1efeec3e-3fce-5f06-9f79-98b8cfe5047b", "id": "CVE-2018-11765", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11765 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-nfs." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-nfs@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7e0d5adb-3fdf-544c-ba1d-4e2bc2c1c5c7", "id": "CVE-2018-11766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11766 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-nfs." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-nfs@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0755b53b-8520-531f-a6a1-581b676a5af8", "id": "CVE-2018-11768", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11768 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-nfs." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-nfs@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:655336f1-06b3-5589-bb08-85a3728aa4e6", "id": "CVE-2018-1296", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1296 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-nfs." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-nfs@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7c4cb1df-8ec4-5675-85b7-a260854b21cd", "id": "CVE-2018-8009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8009 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-nfs." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-nfs@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef952a2b-7d00-5308-9ffd-aefef76c12f0", "id": "CVE-2018-8029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8029 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-nfs." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-nfs@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:09b66801-2b80-56cb-a6ea-9d0181ff0491", "id": "CVE-2020-9492", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9492 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-nfs." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-nfs@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9d3ef0c0-dd22-5357-a930-c4e5748c1e53", "id": "CVE-2021-25642", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-25642 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-nfs." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-nfs@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3c41da31-7652-5d09-93ca-d81a43a56389", "id": "CVE-2021-33036", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-33036 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-nfs." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-nfs@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d16fbcce-ffc6-5aff-b734-739ea280beb5", "id": "CVE-2021-37404", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-37404 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-nfs." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-nfs@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:82780b92-eff9-5529-8e73-8150c54010ee", "id": "CVE-2022-25168", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-25168 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-nfs." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-nfs@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4e8785c-348f-563c-a574-692efdf5d8e8", "id": "CVE-2022-26612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-26612 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-nfs." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-nfs@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a107b3c8-e637-57e4-ae01-4ccc2cbe359b", "id": "CVE-2024-23454", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23454 is fixed in version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-nfs." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-nfs@2.7.1.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-nfs@2.7.1.tuxcare.1" } ] }