{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4218251a-d9b4-5467-97ee-9bc9b72da06f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.4", "type": "library", "group": "org.apache.thrift", "name": "libfb303", "version": "0.9.3-tuxcare.4", "purl": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:093f3698-809d-56fa-808d-a9d8a5a51e68", "id": "CVE-2016-5397", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-5397 is fixed in version 0.9.3-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7251caa1-716d-5f69-88e9-022ca39c523f", "id": "CVE-2018-11798", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11798 is fixed in version 0.9.3-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d0ccb0af-33a3-58eb-939f-e14f7aea978e", "id": "CVE-2018-1320", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1320 is fixed in version 0.9.3-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2cee1602-1764-5352-94b1-37dee172a654", "id": "CVE-2019-0205", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-0205 is fixed in version 0.9.3-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:966ec59c-1915-5d32-aaee-1eab86ca5bd3", "id": "CVE-2019-0210", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0210 affects version 0.9.3-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f2f21950-c19e-592b-9045-a59da335abf0", "id": "CVE-2019-11938", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-11938 affects version 0.9.3-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2a201316-c03c-5123-82ac-239ea3453fee", "id": "CVE-2019-11939", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-11939 is fixed in version 0.9.3-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d3ffc56b-936e-579c-827d-ad7cc38f54d5", "id": "CVE-2019-3552", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-3552 affects version 0.9.3-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a216a5a7-086e-5f27-ba7c-ae42d69c210e", "id": "CVE-2019-3553", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-3553 is fixed in version 0.9.3-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4c05b5c0-d658-5d30-ac0a-818554f1de6c", "id": "CVE-2019-3558", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-3558 is fixed in version 0.9.3-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f82be959-4d06-5342-8f79-8dd6e512d7e6", "id": "CVE-2019-3559", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-3559 affects version 0.9.3-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e28cb5fa-600e-5742-a92a-54b52022b8a1", "id": "CVE-2019-3564", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-3564 is fixed in version 0.9.3-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8730f3d7-b0c6-5ec7-a6cf-38f4a80f1aed", "id": "CVE-2019-3565", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-3565 is fixed in version 0.9.3-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3f7ad0b3-0963-5aa3-a131-223962f096a1", "id": "CVE-2020-13949", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-13949 is fixed in version 0.9.3-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c6b6aee3-829d-5f32-bbb2-65ab027af5dd", "id": "CVE-2021-24028", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24028 affects version 0.9.3-tuxcare.4 of org.apache.thrift:libfb303." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.thrift/libfb303@0.9.3-tuxcare.4" } ] }