{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7bbb0735-8892-5def-b9f7-0cd5193dfa3b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk14@1.64-tuxcare.1", "type": "library", "group": "org.bouncycastle", "name": "bcprov-ext-jdk14", "version": "1.64-tuxcare.1", "purl": "pkg:maven/org.bouncycastle/bcprov-ext-jdk14@1.64-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d0767f3c-f23a-55c9-81f6-596ff7ef49fc", "id": "CVE-2020-0187", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-0187 affects version 1.64-tuxcare.1 of org.bouncycastle:bcprov-ext-jdk14." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk14@1.64-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1aeba80f-4641-5184-a5a0-49ff25a84fe8", "id": "CVE-2020-15522", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-15522 is fixed in version 1.64-tuxcare.1 of org.bouncycastle:bcprov-ext-jdk14." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk14@1.64-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b2886182-b3ec-5dfa-8a5e-df0e895f2c6d", "id": "CVE-2023-33201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-33201 affects version 1.64-tuxcare.1 of org.bouncycastle:bcprov-ext-jdk14." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk14@1.64-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:983e7f80-b7c3-5526-87b2-ee311621e253", "id": "CVE-2023-33202", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-33202 affects version 1.64-tuxcare.1 of org.bouncycastle:bcprov-ext-jdk14." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk14@1.64-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:10657598-186e-5df2-b9e6-68825621d6cd", "id": "CVE-2024-29857", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29857 affects version 1.64-tuxcare.1 of org.bouncycastle:bcprov-ext-jdk14." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk14@1.64-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:58f23d0b-5d13-5798-8778-9e0666cb5f16", "id": "CVE-2024-30171", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-30171 affects version 1.64-tuxcare.1 of org.bouncycastle:bcprov-ext-jdk14." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk14@1.64-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:abfa2b54-d2a3-5988-9965-1547b71ca77e", "id": "CVE-2024-34447", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-34447 affects version 1.64-tuxcare.1 of org.bouncycastle:bcprov-ext-jdk14." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk14@1.64-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eafd72fd-ff99-5736-b9db-058189d61a6a", "id": "CVE-2025-8885", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-8885 affects version 1.64-tuxcare.1 of org.bouncycastle:bcprov-ext-jdk14." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk14@1.64-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:05bf7bd7-7dad-506c-9b75-9595ab0b5f44", "id": "CVE-2025-8916", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-8916 is fixed in version 1.64-tuxcare.1 of org.bouncycastle:bcprov-ext-jdk14." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk14@1.64-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk14@1.64-tuxcare.1" } ] }