{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4640f389-4d77-5136-8204-2742231d7c32", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.codehaus.plexus/plexus-utils@1.5.8.tuxcare", "type": "library", "group": "org.codehaus.plexus", "name": "plexus-utils", "version": "1.5.8.tuxcare", "purl": "pkg:maven/org.codehaus.plexus/plexus-utils@1.5.8.tuxcare" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8c8e29b4-b4f9-5365-8b95-9eb223275a7e", "id": "CVE-2017-1000487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-1000487 is fixed in version 1.5.8.tuxcare of org.codehaus.plexus:plexus-utils." }, "affects": [ { "ref": "pkg:maven/org.codehaus.plexus/plexus-utils@1.5.8.tuxcare" } ] }, { "bom-ref": "urn:uuid:c3f3c149-8183-52ac-99d7-a73d0f2ff85a", "id": "CVE-2022-4244", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-4244 is fixed in version 1.5.8.tuxcare of org.codehaus.plexus:plexus-utils." }, "affects": [ { "ref": "pkg:maven/org.codehaus.plexus/plexus-utils@1.5.8.tuxcare" } ] }, { "bom-ref": "urn:uuid:11c4309e-4dd0-5cc2-a8b5-fff5fdc77e47", "id": "CVE-2022-4245", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-4245 is fixed in version 1.5.8.tuxcare of org.codehaus.plexus:plexus-utils." }, "affects": [ { "ref": "pkg:maven/org.codehaus.plexus/plexus-utils@1.5.8.tuxcare" } ] }, { "bom-ref": "urn:uuid:d405588e-abe8-5a67-b498-c36c5db8bb19", "id": "CVE-2025-67030", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67030 affects version 1.5.8.tuxcare of org.codehaus.plexus:plexus-utils." }, "affects": [ { "ref": "pkg:maven/org.codehaus.plexus/plexus-utils@1.5.8.tuxcare" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.codehaus.plexus/plexus-utils@1.5.8.tuxcare" } ] }