{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8214e336-185b-5695-9d22-baed6b3355e9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.struts/struts-mailreader-dao@1.3.5-tuxcare.1", "type": "library", "group": "org.apache.struts", "name": "struts-mailreader-dao", "version": "1.3.5-tuxcare.1", "purl": "pkg:maven/org.apache.struts/struts-mailreader-dao@1.3.5-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:922c1e1b-611e-56eb-9040-4f30b726919c", "id": "CVE-2012-0391", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-0391 affects version 1.3.5-tuxcare.1 of org.apache.struts:struts-mailreader-dao." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-mailreader-dao@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:530bcf8d-4418-55c0-9df9-ea0e5a67b3f7", "id": "CVE-2012-1007", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2012-1007 is fixed in version 1.3.5-tuxcare.1 of org.apache.struts:struts-mailreader-dao." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-mailreader-dao@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8a62f906-8fd0-5d82-813b-bbf477a4fd9b", "id": "CVE-2014-0114", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0114 affects version 1.3.5-tuxcare.1 of org.apache.struts:struts-mailreader-dao." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-mailreader-dao@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cb1952ca-31a8-56fb-9ef1-59ff96c3645b", "id": "CVE-2015-0899", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-0899 is fixed in version 1.3.5-tuxcare.1 of org.apache.struts:struts-mailreader-dao." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-mailreader-dao@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5194369a-8220-5e84-8743-8c3c46557b52", "id": "CVE-2016-1181", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-1181 is fixed in version 1.3.5-tuxcare.1 of org.apache.struts:struts-mailreader-dao." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-mailreader-dao@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:393b4baa-fe4d-52ce-b390-556673a8e174", "id": "CVE-2016-1182", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-1182 is fixed in version 1.3.5-tuxcare.1 of org.apache.struts:struts-mailreader-dao." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-mailreader-dao@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0acb1863-a95b-5f33-b56c-a089f4897a77", "id": "CVE-2016-4431", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-4431 affects version 1.3.5-tuxcare.1 of org.apache.struts:struts-mailreader-dao." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-mailreader-dao@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:790af6bc-34b3-5077-9127-166682bfdc57", "id": "CVE-2020-26258", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-26258 affects version 1.3.5-tuxcare.1 of org.apache.struts:struts-mailreader-dao." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-mailreader-dao@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d04ae93-008e-51e6-b539-c3009b07e3d7", "id": "CVE-2020-26259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-26259 affects version 1.3.5-tuxcare.1 of org.apache.struts:struts-mailreader-dao." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-mailreader-dao@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d96bffa2-b8ad-5fee-89bf-3b4a9df0e5bd", "id": "CVE-2023-34149", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34149 affects version 1.3.5-tuxcare.1 of org.apache.struts:struts-mailreader-dao." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-mailreader-dao@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fa47828b-e9cc-5017-b060-a270b5c9115e", "id": "CVE-2023-34396", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34396 affects version 1.3.5-tuxcare.1 of org.apache.struts:struts-mailreader-dao." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-mailreader-dao@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1349e5a5-a43f-502a-86ee-a10ee75f3bd2", "id": "CVE-2023-47466", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-47466 affects version 1.3.5-tuxcare.1 of org.apache.struts:struts-mailreader-dao." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-mailreader-dao@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ebf1b940-a367-5c53-b29c-1d82e875333c", "id": "CVE-2023-49735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-49735 affects version 1.3.5-tuxcare.1 of org.apache.struts:struts-mailreader-dao." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-mailreader-dao@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:581b5196-a5a5-5492-9e46-cee654953ef1", "id": "CVE-2025-54656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54656 is fixed in version 1.3.5-tuxcare.1 of org.apache.struts:struts-mailreader-dao." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-mailreader-dao@1.3.5-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.struts/struts-mailreader-dao@1.3.5-tuxcare.1" } ] }