{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e1fab6d0-d6bb-5a24-be44-ac602e0ebe09", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.1", "type": "library", "group": "org.apache.thrift", "name": "libfb303", "version": "0.9.1-tuxcare.1", "purl": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3bb202cb-102d-5de3-abca-b6c1b3b35861", "id": "CVE-2015-3254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3254 affects version 0.9.1-tuxcare.1 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bd0b32e2-eb92-5af8-8ec2-22bc263c26de", "id": "CVE-2016-5397", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-5397 is fixed in version 0.9.1-tuxcare.1 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6c5ef48f-be79-54b0-923e-646e29c6694c", "id": "CVE-2018-1320", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1320 affects version 0.9.1-tuxcare.1 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:687a8632-9059-5d2e-98dd-ebd5a108de8d", "id": "CVE-2019-0205", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-0205 is fixed in version 0.9.1-tuxcare.1 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ccc49728-6783-50e9-aa6a-81043187ffb5", "id": "CVE-2019-11938", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-11938 affects version 0.9.1-tuxcare.1 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e41110c4-3b81-54be-8cd8-218fee98484f", "id": "CVE-2019-11939", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-11939 affects version 0.9.1-tuxcare.1 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:384656c4-d6fc-54f9-a077-cee627963faa", "id": "CVE-2019-3552", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-3552 affects version 0.9.1-tuxcare.1 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4e0ffb36-bf1a-5b9a-878c-f3c891b32cd6", "id": "CVE-2019-3553", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-3553 affects version 0.9.1-tuxcare.1 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6b5ea6ac-bdd7-5dbb-97b9-c20688e09698", "id": "CVE-2019-3558", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-3558 affects version 0.9.1-tuxcare.1 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:261f3491-c755-5feb-8863-864d50f131de", "id": "CVE-2019-3559", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-3559 affects version 0.9.1-tuxcare.1 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4c0e29b3-3dd3-5c3d-91d7-f985499f134c", "id": "CVE-2019-3564", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-3564 affects version 0.9.1-tuxcare.1 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6cfe060f-9702-50ca-9f51-455d5e4c79db", "id": "CVE-2019-3565", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-3565 affects version 0.9.1-tuxcare.1 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0260167b-cb74-5654-baea-a55bf96ff81a", "id": "CVE-2021-24028", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24028 affects version 0.9.1-tuxcare.1 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.1" } ] }