{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:60058d25-2183-5661-affa-b9b22edd36f4", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.3", "type": "library", "group": "org.apache.thrift", "name": "libfb303", "version": "0.9.3-tuxcare.3", "purl": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:567d71cd-d350-58eb-be7e-8b0cbebd2605", "id": "CVE-2016-5397", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-5397 is fixed in version 0.9.3-tuxcare.3 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b3346200-9497-5eb7-bfca-36733598ce15", "id": "CVE-2018-11798", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11798 is fixed in version 0.9.3-tuxcare.3 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3d703755-479a-5ccd-9493-edafed686ea8", "id": "CVE-2018-1320", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1320 is fixed in version 0.9.3-tuxcare.3 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:644f614c-c98b-5fda-b219-001f1f1aeab7", "id": "CVE-2019-0205", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-0205 is fixed in version 0.9.3-tuxcare.3 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:892f3c91-b29b-5751-8977-6f838877c7f6", "id": "CVE-2019-0210", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0210 affects version 0.9.3-tuxcare.3 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5ffe24ae-d278-5fc0-a593-709458fbba52", "id": "CVE-2019-11938", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-11938 affects version 0.9.3-tuxcare.3 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b7a0e39e-b143-5771-a29c-f5c7650f06e9", "id": "CVE-2019-11939", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-11939 is fixed in version 0.9.3-tuxcare.3 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:77f2ca39-8104-5a69-9a2f-c321dc2575d6", "id": "CVE-2019-3552", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-3552 affects version 0.9.3-tuxcare.3 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a6a8abdb-7d60-5f25-bf5a-4b3a445c2c19", "id": "CVE-2019-3553", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-3553 is fixed in version 0.9.3-tuxcare.3 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:da94fe57-4373-5764-91f9-d665bda302d9", "id": "CVE-2019-3558", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-3558 is fixed in version 0.9.3-tuxcare.3 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3699d114-3e45-5a12-bd9f-3d8777f26149", "id": "CVE-2019-3559", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-3559 affects version 0.9.3-tuxcare.3 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f14f07e3-4bd3-5e1f-86bd-5d72af9e5112", "id": "CVE-2019-3564", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-3564 is fixed in version 0.9.3-tuxcare.3 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3450c114-2f1b-543c-a6f0-61e424a411db", "id": "CVE-2019-3565", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-3565 affects version 0.9.3-tuxcare.3 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:322a773d-498f-5078-8d01-6abdc0d65260", "id": "CVE-2020-13949", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-13949 is fixed in version 0.9.3-tuxcare.3 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f6ed1d26-c0b2-52bb-b50f-5bdf68848e7a", "id": "CVE-2021-24028", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24028 affects version 0.9.3-tuxcare.3 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.3" } ] }