{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7dac075c-02f7-59ff-965c-b4858e980e7b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.kafka/kafka-streams-upgrade-system-tests-23@3.2.3.tuxcare.1", "type": "library", "group": "org.apache.kafka", "name": "kafka-streams-upgrade-system-tests-23", "version": "3.2.3.tuxcare.1", "purl": "pkg:maven/org.apache.kafka/kafka-streams-upgrade-system-tests-23@3.2.3.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f6d2f5bb-145a-526a-a329-d7cf4e3645ec", "id": "CVE-2023-25194", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-25194 is fixed in version 3.2.3.tuxcare.1 of org.apache.kafka:kafka-streams-upgrade-system-tests-23." }, "affects": [ { "ref": "pkg:maven/org.apache.kafka/kafka-streams-upgrade-system-tests-23@3.2.3.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6a6c1ea3-adbd-5a02-a69d-fbb97cc81905", "id": "CVE-2024-31141", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-31141 is fixed in version 3.2.3.tuxcare.1 of org.apache.kafka:kafka-streams-upgrade-system-tests-23." }, "affects": [ { "ref": "pkg:maven/org.apache.kafka/kafka-streams-upgrade-system-tests-23@3.2.3.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:723360a2-32de-5486-acab-cee88ea6ea3f", "id": "CVE-2024-56128", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56128 is fixed in version 3.2.3.tuxcare.1 of org.apache.kafka:kafka-streams-upgrade-system-tests-23." }, "affects": [ { "ref": "pkg:maven/org.apache.kafka/kafka-streams-upgrade-system-tests-23@3.2.3.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9940918c-7b12-5803-adcb-32d7dd8cd58e", "id": "CVE-2025-27817", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-27817 is fixed in version 3.2.3.tuxcare.1 of org.apache.kafka:kafka-streams-upgrade-system-tests-23." }, "affects": [ { "ref": "pkg:maven/org.apache.kafka/kafka-streams-upgrade-system-tests-23@3.2.3.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2b069c6a-8579-59df-b756-c1a705d85196", "id": "CVE-2025-27818", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-27818 is fixed in version 3.2.3.tuxcare.1 of org.apache.kafka:kafka-streams-upgrade-system-tests-23." }, "affects": [ { "ref": "pkg:maven/org.apache.kafka/kafka-streams-upgrade-system-tests-23@3.2.3.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8d152b62-00be-5122-ac52-2f4a96464530", "id": "CVE-2025-27819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-27819 is fixed in version 3.2.3.tuxcare.1 of org.apache.kafka:kafka-streams-upgrade-system-tests-23." }, "affects": [ { "ref": "pkg:maven/org.apache.kafka/kafka-streams-upgrade-system-tests-23@3.2.3.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5d9a870f-6ff1-5222-9771-40ed2c202714", "id": "CVE-2026-35554", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-35554 affects version 3.2.3.tuxcare.1 of org.apache.kafka:kafka-streams-upgrade-system-tests-23." }, "affects": [ { "ref": "pkg:maven/org.apache.kafka/kafka-streams-upgrade-system-tests-23@3.2.3.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.kafka/kafka-streams-upgrade-system-tests-23@3.2.3.tuxcare.1" } ] }