{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5f66758a-81eb-51d6-a253-32bc3e4e7e4d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.thrift/libthrift@0.9.3-tuxcare.3", "type": "library", "group": "org.apache.thrift", "name": "libthrift", "version": "0.9.3-tuxcare.3", "purl": "pkg:maven/org.apache.thrift/libthrift@0.9.3-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:332b03cf-e537-5663-b4a7-50ab82bb304a", "id": "CVE-2016-5397", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-5397 is fixed in version 0.9.3-tuxcare.3 of org.apache.thrift:libthrift." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1e17af65-0870-54d4-bc77-058e6de19e2c", "id": "CVE-2018-11798", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11798 is fixed in version 0.9.3-tuxcare.3 of org.apache.thrift:libthrift." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fe8b8fb7-97ef-51d5-b071-e2fe57385e06", "id": "CVE-2018-1320", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1320 is fixed in version 0.9.3-tuxcare.3 of org.apache.thrift:libthrift." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2e12d977-6b6b-5dff-a65a-c269efcf8662", "id": "CVE-2019-0205", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-0205 is fixed in version 0.9.3-tuxcare.3 of org.apache.thrift:libthrift." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6850b9c4-98d8-58c5-8153-96102154f6a4", "id": "CVE-2019-0210", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0210 affects version 0.9.3-tuxcare.3 of org.apache.thrift:libthrift." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5d54a164-9e6f-540c-a4a5-d5f3882bb5dc", "id": "CVE-2019-11938", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-11938 affects version 0.9.3-tuxcare.3 of org.apache.thrift:libthrift." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d45915e3-0f94-543d-b454-8d9f9e7ff58a", "id": "CVE-2019-11939", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-11939 is fixed in version 0.9.3-tuxcare.3 of org.apache.thrift:libthrift." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:066c8c43-ee65-5dcf-98e7-d3ed13fec9b1", "id": "CVE-2019-3552", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-3552 affects version 0.9.3-tuxcare.3 of org.apache.thrift:libthrift." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f314d467-942c-5b23-8421-ab582b1dd497", "id": "CVE-2019-3553", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-3553 is fixed in version 0.9.3-tuxcare.3 of org.apache.thrift:libthrift." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:474849e5-cc9c-5977-891a-c27a3a6b2b5f", "id": "CVE-2019-3558", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-3558 is fixed in version 0.9.3-tuxcare.3 of org.apache.thrift:libthrift." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4883f033-e6cb-5eec-b62f-eb8073061cb0", "id": "CVE-2019-3559", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-3559 affects version 0.9.3-tuxcare.3 of org.apache.thrift:libthrift." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:02c4449d-ce68-5d76-a102-71d54a561803", "id": "CVE-2019-3564", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-3564 is fixed in version 0.9.3-tuxcare.3 of org.apache.thrift:libthrift." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:431fb992-5990-57ee-a61c-0917c2c57ade", "id": "CVE-2019-3565", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-3565 affects version 0.9.3-tuxcare.3 of org.apache.thrift:libthrift." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:15cf86a7-0df9-5e8c-8e93-7e7652edbce6", "id": "CVE-2020-13949", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-13949 is fixed in version 0.9.3-tuxcare.3 of org.apache.thrift:libthrift." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:55696409-3e11-503d-9b46-b42f40342282", "id": "CVE-2021-24028", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24028 affects version 0.9.3-tuxcare.3 of org.apache.thrift:libthrift." }, "affects": [ { "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.3-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.thrift/libthrift@0.9.3-tuxcare.3" } ] }