{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0230b52e-e2f7-5ffd-9c77-ec200a4d57da", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.struts/struts-parent@1.3.5-tuxcare.1", "type": "library", "group": "org.apache.struts", "name": "struts-parent", "version": "1.3.5-tuxcare.1", "purl": "pkg:maven/org.apache.struts/struts-parent@1.3.5-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:918cfd18-831f-5fa4-bd0e-f6c8e8949a77", "id": "CVE-2012-0391", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-0391 affects version 1.3.5-tuxcare.1 of org.apache.struts:struts-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-parent@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:443a68a5-d0e0-5d45-a874-ea483050062d", "id": "CVE-2012-1007", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2012-1007 is fixed in version 1.3.5-tuxcare.1 of org.apache.struts:struts-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-parent@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:df9b2c77-4087-53c2-a8bb-a75cac3f8351", "id": "CVE-2014-0114", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0114 affects version 1.3.5-tuxcare.1 of org.apache.struts:struts-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-parent@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ff11e9e5-bd69-55eb-b048-cdc881228687", "id": "CVE-2015-0899", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-0899 is fixed in version 1.3.5-tuxcare.1 of org.apache.struts:struts-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-parent@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c203f077-a303-5376-a953-8bb7142ad228", "id": "CVE-2016-1181", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-1181 is fixed in version 1.3.5-tuxcare.1 of org.apache.struts:struts-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-parent@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9ecd2f8a-cc65-5136-8969-c98426104412", "id": "CVE-2016-1182", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-1182 is fixed in version 1.3.5-tuxcare.1 of org.apache.struts:struts-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-parent@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6b483f84-4472-5045-a899-a038daa87123", "id": "CVE-2016-4431", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-4431 affects version 1.3.5-tuxcare.1 of org.apache.struts:struts-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-parent@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:350f941d-eb09-5c6c-87f8-d68558db4bf4", "id": "CVE-2020-26258", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-26258 affects version 1.3.5-tuxcare.1 of org.apache.struts:struts-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-parent@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:86c50307-6c74-5c8c-9ab9-3d032b9d473a", "id": "CVE-2020-26259", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-26259 affects version 1.3.5-tuxcare.1 of org.apache.struts:struts-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-parent@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d0884489-750a-53a1-b732-5473133c8f9d", "id": "CVE-2023-34149", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34149 affects version 1.3.5-tuxcare.1 of org.apache.struts:struts-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-parent@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6fdf7024-8aa6-5167-9056-4c1e0cbb6a80", "id": "CVE-2023-34396", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34396 affects version 1.3.5-tuxcare.1 of org.apache.struts:struts-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-parent@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a13773e-3f6d-5efb-bfba-b76d91884ffe", "id": "CVE-2023-47466", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-47466 affects version 1.3.5-tuxcare.1 of org.apache.struts:struts-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-parent@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fe2220f4-ffca-5f8e-80ec-5f4ab7207618", "id": "CVE-2023-49735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-49735 affects version 1.3.5-tuxcare.1 of org.apache.struts:struts-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-parent@1.3.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0b724934-2bab-57f1-b0d9-99397c40194d", "id": "CVE-2025-54656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54656 is fixed in version 1.3.5-tuxcare.1 of org.apache.struts:struts-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.struts/struts-parent@1.3.5-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.struts/struts-parent@1.3.5-tuxcare.1" } ] }