{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1e3bdff8-b147-5764-909a-c40efc919545", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.4", "type": "library", "group": "org.apache.thrift", "name": "libfb303", "version": "0.9.1-tuxcare.4", "purl": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ffbb0ac7-6933-53c1-a84e-529d98c6150f", "id": "CVE-2015-3254", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3254 affects version 0.9.1-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:53c6d241-eae0-5226-9f32-fe33d114aa10", "id": "CVE-2016-5397", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-5397 is fixed in version 0.9.1-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0f5dc74f-dfc9-593c-852d-77cfdd3a5ffc", "id": "CVE-2018-1320", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1320 is fixed in version 0.9.1-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d6280221-b4db-571f-b949-0109472e926f", "id": "CVE-2019-0205", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-0205 is fixed in version 0.9.1-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:268f2973-16e8-5fcf-b8d3-03061ede499c", "id": "CVE-2019-11938", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-11938 is fixed in version 0.9.1-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:29c3960b-99ce-573f-94b4-dc735351dcc2", "id": "CVE-2019-11939", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-11939 is fixed in version 0.9.1-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:48f1aa2c-758a-5d10-8858-14c497075efb", "id": "CVE-2019-3552", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-3552 affects version 0.9.1-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c52bec3e-77d5-56b2-89ce-f174121e63e9", "id": "CVE-2019-3553", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-3553 is fixed in version 0.9.1-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4127a18c-5840-5d9e-8286-2999e40e5b8f", "id": "CVE-2019-3558", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-3558 is fixed in version 0.9.1-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2b23f107-2b80-5ede-b8d1-297086b42240", "id": "CVE-2019-3559", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-3559 affects version 0.9.1-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:71dcc7b6-9cb7-5b94-8b5a-cf38eb4656b5", "id": "CVE-2019-3564", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-3564 is fixed in version 0.9.1-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cde347f6-8a82-521b-b530-b7b3b09cef2d", "id": "CVE-2019-3565", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-3565 is fixed in version 0.9.1-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1cc8c1bf-455c-5041-9913-4a10a78775d2", "id": "CVE-2021-24028", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24028 affects version 0.9.1-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.1-tuxcare.4" } ] }