{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:f9f74471-499e-5662-8c69-835f3d1522c0",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:maven/org.yaml/snakeyaml@1.26-tuxcare.3",
      "type": "library",
      "group": "org.yaml",
      "name": "snakeyaml",
      "version": "1.26-tuxcare.3",
      "purl": "pkg:maven/org.yaml/snakeyaml@1.26-tuxcare.3"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:5630e1f9-021d-50ce-90cb-9edcdffd3a21",
      "id": "CVE-2022-1471",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2022-1471 is fixed in version 1.26-tuxcare.3 of org.yaml:snakeyaml."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.yaml/snakeyaml@1.26-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:607cf0f6-d2aa-5855-8cce-919d99d4977a",
      "id": "CVE-2022-25857",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2022-25857 is fixed in version 1.26-tuxcare.3 of org.yaml:snakeyaml."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.yaml/snakeyaml@1.26-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:ef1f722e-e1cd-5ca1-9c1d-0fc7956d83b3",
      "id": "CVE-2022-38749",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2022-38749 is fixed in version 1.26-tuxcare.3 of org.yaml:snakeyaml."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.yaml/snakeyaml@1.26-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:593a9bab-1d64-5f4d-9e1b-b0166f94d234",
      "id": "CVE-2022-38750",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2022-38750 is fixed in version 1.26-tuxcare.3 of org.yaml:snakeyaml."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.yaml/snakeyaml@1.26-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:662da332-6f8c-582c-84df-ae7190847e4a",
      "id": "CVE-2022-38751",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2022-38751 affects version 1.26-tuxcare.3 of org.yaml:snakeyaml."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.yaml/snakeyaml@1.26-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:a14ec0cb-b55c-5913-b5fa-a5fc55a6d8fc",
      "id": "CVE-2022-38752",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2022-38752 is fixed in version 1.26-tuxcare.3 of org.yaml:snakeyaml."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.yaml/snakeyaml@1.26-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:3423e89d-4b8e-5af3-a4ed-62d142e51f3d",
      "id": "CVE-2022-41854",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2022-41854 affects version 1.26-tuxcare.3 of org.yaml:snakeyaml."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.yaml/snakeyaml@1.26-tuxcare.3"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:maven/org.yaml/snakeyaml@1.26-tuxcare.3"
    }
  ]
}