{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:43dc0a16-4825-5d1a-a673-b12736fec784", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.codehaus.plexus/plexus-utils@1.4.5-tuxcare.1", "type": "library", "group": "org.codehaus.plexus", "name": "plexus-utils", "version": "1.4.5-tuxcare.1", "purl": "pkg:maven/org.codehaus.plexus/plexus-utils@1.4.5-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:731e1f0c-b428-5e50-962b-cf3593735e6a", "id": "CVE-2017-1000487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-1000487 affects version 1.4.5-tuxcare.1 of org.codehaus.plexus:plexus-utils." }, "affects": [ { "ref": "pkg:maven/org.codehaus.plexus/plexus-utils@1.4.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b6c5efc-62f0-514b-940e-524645f64641", "id": "CVE-2022-4244", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-4244 is fixed in version 1.4.5-tuxcare.1 of org.codehaus.plexus:plexus-utils." }, "affects": [ { "ref": "pkg:maven/org.codehaus.plexus/plexus-utils@1.4.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9474ff6f-ff58-54e0-af10-5024e9713704", "id": "CVE-2022-4245", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-4245 affects version 1.4.5-tuxcare.1 of org.codehaus.plexus:plexus-utils." }, "affects": [ { "ref": "pkg:maven/org.codehaus.plexus/plexus-utils@1.4.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:737f65df-ea13-5a8d-b8c1-7cf540436a87", "id": "CVE-2025-67030", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67030 affects version 1.4.5-tuxcare.1 of org.codehaus.plexus:plexus-utils." }, "affects": [ { "ref": "pkg:maven/org.codehaus.plexus/plexus-utils@1.4.5-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.codehaus.plexus/plexus-utils@1.4.5-tuxcare.1" } ] }