{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:9d1a198c-48ee-542b-9233-6de60f590cc6",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:maven/org.apache.lucene/lucene-grouping@5.5.5-tuxcare.1",
      "type": "library",
      "group": "org.apache.lucene",
      "name": "lucene-grouping",
      "version": "5.5.5-tuxcare.1",
      "purl": "pkg:maven/org.apache.lucene/lucene-grouping@5.5.5-tuxcare.1"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:1dfe496b-f48f-542e-8833-94c67600b195",
      "id": "CVE-2017-3164",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2017-3164 affects version 5.5.5-tuxcare.1 of org.apache.lucene:lucene-grouping."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.lucene/lucene-grouping@5.5.5-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:727228df-e396-59a3-ac29-6d1c319e214b",
      "id": "CVE-2018-11802",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2018-11802 affects version 5.5.5-tuxcare.1 of org.apache.lucene:lucene-grouping."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.lucene/lucene-grouping@5.5.5-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:8144490f-649f-5be5-8d2f-1a65123ae9e6",
      "id": "CVE-2018-1308",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2018-1308 is fixed in version 5.5.5-tuxcare.1 of org.apache.lucene:lucene-grouping."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.lucene/lucene-grouping@5.5.5-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:d1ec48fe-d202-587d-a8c3-420a5b4165d1",
      "id": "CVE-2019-0192",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2019-0192 affects version 5.5.5-tuxcare.1 of org.apache.lucene:lucene-grouping."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.lucene/lucene-grouping@5.5.5-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:185fdbbb-b2f9-5b43-8d4f-63f0046ae0bc",
      "id": "CVE-2019-0193",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2019-0193 affects version 5.5.5-tuxcare.1 of org.apache.lucene:lucene-grouping."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.lucene/lucene-grouping@5.5.5-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:b367909c-12a0-57ce-acb2-b0c53fa9d600",
      "id": "CVE-2019-12409",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2019-12409 affects version 5.5.5-tuxcare.1 of org.apache.lucene:lucene-grouping."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.lucene/lucene-grouping@5.5.5-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:1e3862ef-5600-5536-af38-c92dc4c9ab56",
      "id": "CVE-2019-17558",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2019-17558 affects version 5.5.5-tuxcare.1 of org.apache.lucene:lucene-grouping."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.lucene/lucene-grouping@5.5.5-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:3fcb165d-024d-58ff-a007-143b06409d68",
      "id": "CVE-2020-13941",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2020-13941 affects version 5.5.5-tuxcare.1 of org.apache.lucene:lucene-grouping."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.lucene/lucene-grouping@5.5.5-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:fec61170-1f95-52e4-894a-79e3dd50d5a2",
      "id": "CVE-2021-27905",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2021-27905 affects version 5.5.5-tuxcare.1 of org.apache.lucene:lucene-grouping."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.lucene/lucene-grouping@5.5.5-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c08a1b28-6ee0-5731-999c-32c2bc7954fd",
      "id": "CVE-2021-29262",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2021-29262 affects version 5.5.5-tuxcare.1 of org.apache.lucene:lucene-grouping."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.lucene/lucene-grouping@5.5.5-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:fbc14e69-70ff-5c09-b1ce-9dd304b2d50f",
      "id": "CVE-2021-29943",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2021-29943 affects version 5.5.5-tuxcare.1 of org.apache.lucene:lucene-grouping."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.lucene/lucene-grouping@5.5.5-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:2f70c077-9d51-51e1-b4bb-31744fc6b1eb",
      "id": "CVE-2021-44548",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2021-44548 affects version 5.5.5-tuxcare.1 of org.apache.lucene:lucene-grouping."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.lucene/lucene-grouping@5.5.5-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:07f1d7a0-7a43-5ac6-84d0-3605a092bce6",
      "id": "CVE-2023-44487",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-44487 affects version 5.5.5-tuxcare.1 of org.apache.lucene:lucene-grouping."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.lucene/lucene-grouping@5.5.5-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:34ab5eba-fb3d-58e8-b462-952bb5a96dcb",
      "id": "CVE-2024-45216",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-45216 affects version 5.5.5-tuxcare.1 of org.apache.lucene:lucene-grouping."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.lucene/lucene-grouping@5.5.5-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:9a59133e-deb3-539e-8dc6-3ff8d40b8d2a",
      "id": "CVE-2024-45772",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-45772 affects version 5.5.5-tuxcare.1 of org.apache.lucene:lucene-grouping."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.lucene/lucene-grouping@5.5.5-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:0019623d-6322-5828-8f82-4b8048c0aa69",
      "id": "CVE-2025-24814",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-24814 affects version 5.5.5-tuxcare.1 of org.apache.lucene:lucene-grouping."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.lucene/lucene-grouping@5.5.5-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c17609d2-5308-5d0f-8728-781fdc8204b4",
      "id": "CVE-2026-22022",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-22022 affects version 5.5.5-tuxcare.1 of org.apache.lucene:lucene-grouping."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.lucene/lucene-grouping@5.5.5-tuxcare.1"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:maven/org.apache.lucene/lucene-grouping@5.5.5-tuxcare.1"
    }
  ]
}