{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:572e5dd2-1277-5a9e-9290-03a711c32fae",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:maven/org.apache.thrift/libthrift@0.9.1-tuxcare.4",
      "type": "library",
      "group": "org.apache.thrift",
      "name": "libthrift",
      "version": "0.9.1-tuxcare.4",
      "purl": "pkg:maven/org.apache.thrift/libthrift@0.9.1-tuxcare.4"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:9262fa21-b64d-565a-8f83-29a1e3228ff8",
      "id": "CVE-2015-3254",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2015-3254 affects version 0.9.1-tuxcare.4 of org.apache.thrift:libthrift."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.1-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c83938e0-8664-51ac-94a6-89bf4598c991",
      "id": "CVE-2016-5397",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2016-5397 is fixed in version 0.9.1-tuxcare.4 of org.apache.thrift:libthrift."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.1-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:07b8c4ca-0bb9-5f75-9334-9d73ec2d2a8d",
      "id": "CVE-2018-1320",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2018-1320 is fixed in version 0.9.1-tuxcare.4 of org.apache.thrift:libthrift."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.1-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:e36f6518-561b-5956-9bf8-78d8a816133e",
      "id": "CVE-2019-0205",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2019-0205 is fixed in version 0.9.1-tuxcare.4 of org.apache.thrift:libthrift."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.1-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:a2fe9197-d35b-5d19-83d3-1080b9be22c8",
      "id": "CVE-2019-11938",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2019-11938 is fixed in version 0.9.1-tuxcare.4 of org.apache.thrift:libthrift."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.1-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:8ca57520-444b-585e-934a-45d465d45a3e",
      "id": "CVE-2019-11939",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2019-11939 is fixed in version 0.9.1-tuxcare.4 of org.apache.thrift:libthrift."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.1-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:344494ab-825d-505a-80d3-5c804666db25",
      "id": "CVE-2019-3552",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2019-3552 affects version 0.9.1-tuxcare.4 of org.apache.thrift:libthrift."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.1-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:356a7ffc-bcc7-536d-b4d2-9fc39cbf2652",
      "id": "CVE-2019-3553",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2019-3553 is fixed in version 0.9.1-tuxcare.4 of org.apache.thrift:libthrift."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.1-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:e9e93ead-6bfa-5c6e-addb-d8870fa100e7",
      "id": "CVE-2019-3558",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2019-3558 is fixed in version 0.9.1-tuxcare.4 of org.apache.thrift:libthrift."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.1-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:a850de73-fff9-5605-990c-dc52a7d50d11",
      "id": "CVE-2019-3559",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2019-3559 affects version 0.9.1-tuxcare.4 of org.apache.thrift:libthrift."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.1-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:cae5f3c5-7119-56bc-b5d5-f7b93fc1f681",
      "id": "CVE-2019-3564",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2019-3564 is fixed in version 0.9.1-tuxcare.4 of org.apache.thrift:libthrift."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.1-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:b64b7d72-1d6d-578f-84fc-985634e057bb",
      "id": "CVE-2019-3565",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2019-3565 is fixed in version 0.9.1-tuxcare.4 of org.apache.thrift:libthrift."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.1-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:4e55d2ba-f7f6-5446-a33a-61f0ced0dd10",
      "id": "CVE-2021-24028",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2021-24028 affects version 0.9.1-tuxcare.4 of org.apache.thrift:libthrift."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.1-tuxcare.4"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.1-tuxcare.4"
    }
  ]
}