{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:cbb814b1-1095-55de-96a5-a2768dfca949", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.bouncycastle/bcmail-jdk15on@1.64-tuxcare.1", "type": "library", "group": "org.bouncycastle", "name": "bcmail-jdk15on", "version": "1.64-tuxcare.1", "purl": "pkg:maven/org.bouncycastle/bcmail-jdk15on@1.64-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6e597a2c-269e-5828-8083-690a67381c51", "id": "CVE-2020-0187", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-0187 affects version 1.64-tuxcare.1 of org.bouncycastle:bcmail-jdk15on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcmail-jdk15on@1.64-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e0cf1a7-0004-5d1a-8392-350d3d8bd0d2", "id": "CVE-2020-15522", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-15522 is fixed in version 1.64-tuxcare.1 of org.bouncycastle:bcmail-jdk15on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcmail-jdk15on@1.64-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4080857c-5e4e-5052-ae38-1af5e0236dc4", "id": "CVE-2023-33201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-33201 affects version 1.64-tuxcare.1 of org.bouncycastle:bcmail-jdk15on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcmail-jdk15on@1.64-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d7952430-1749-5cff-afb8-a6a5940c6230", "id": "CVE-2023-33202", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-33202 affects version 1.64-tuxcare.1 of org.bouncycastle:bcmail-jdk15on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcmail-jdk15on@1.64-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:49692f6b-4650-5bc4-b7ac-5740ac0adfcf", "id": "CVE-2024-29857", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29857 affects version 1.64-tuxcare.1 of org.bouncycastle:bcmail-jdk15on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcmail-jdk15on@1.64-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bd9e4662-398c-5326-83da-eae2efa2d607", "id": "CVE-2024-30171", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-30171 affects version 1.64-tuxcare.1 of org.bouncycastle:bcmail-jdk15on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcmail-jdk15on@1.64-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7ffd09ab-09f4-5efe-9c4b-b797a528ebae", "id": "CVE-2024-34447", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-34447 affects version 1.64-tuxcare.1 of org.bouncycastle:bcmail-jdk15on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcmail-jdk15on@1.64-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cd2220a9-50c4-5406-84d0-a55c5d178943", "id": "CVE-2025-8885", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-8885 affects version 1.64-tuxcare.1 of org.bouncycastle:bcmail-jdk15on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcmail-jdk15on@1.64-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:64f47bc6-8c8c-5f1c-9ffd-fee15d5ba9af", "id": "CVE-2025-8916", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-8916 is fixed in version 1.64-tuxcare.1 of org.bouncycastle:bcmail-jdk15on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcmail-jdk15on@1.64-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.bouncycastle/bcmail-jdk15on@1.64-tuxcare.1" } ] }