{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6712301a-5f14-5c6d-8b67-05a4f02318f1", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.bouncycastle/bcmail-jdk18on@1.76-tuxcare.2", "type": "library", "group": "org.bouncycastle", "name": "bcmail-jdk18on", "version": "1.76-tuxcare.2", "purl": "pkg:maven/org.bouncycastle/bcmail-jdk18on@1.76-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:af31bff9-590f-50de-8999-ab5d313969ec", "id": "CVE-2024-29857", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29857 is fixed in version 1.76-tuxcare.2 of org.bouncycastle:bcmail-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcmail-jdk18on@1.76-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4759f10d-42f3-5df9-bd40-dea1af6fefe5", "id": "CVE-2024-30171", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-30171 is fixed in version 1.76-tuxcare.2 of org.bouncycastle:bcmail-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcmail-jdk18on@1.76-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:62a16a1f-d5d7-51c1-a236-265e2663c14f", "id": "CVE-2024-30172", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-30172 is fixed in version 1.76-tuxcare.2 of org.bouncycastle:bcmail-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcmail-jdk18on@1.76-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:41580f49-66f6-5376-a8ba-2758ab35edee", "id": "CVE-2024-34447", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34447 is fixed in version 1.76-tuxcare.2 of org.bouncycastle:bcmail-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcmail-jdk18on@1.76-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e420e1d5-2740-50bc-96be-da4d5df6b096", "id": "CVE-2025-8885", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-8885 is fixed in version 1.76-tuxcare.2 of org.bouncycastle:bcmail-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcmail-jdk18on@1.76-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4b883075-8f5f-5197-b14a-4f966e6a7375", "id": "CVE-2025-8916", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-8916 is fixed in version 1.76-tuxcare.2 of org.bouncycastle:bcmail-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcmail-jdk18on@1.76-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5029df73-f898-57b3-bcb4-e43ab25725f5", "id": "CVE-2026-3505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-3505 affects version 1.76-tuxcare.2 of org.bouncycastle:bcmail-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcmail-jdk18on@1.76-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:50e9a667-98d2-5b94-b65e-230ba6263d40", "id": "CVE-2026-5588", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5588 affects version 1.76-tuxcare.2 of org.bouncycastle:bcmail-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcmail-jdk18on@1.76-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b05d5348-0f1a-50b2-b573-d53738377ad0", "id": "CVE-2026-5598", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5598 affects version 1.76-tuxcare.2 of org.bouncycastle:bcmail-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcmail-jdk18on@1.76-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.bouncycastle/bcmail-jdk18on@1.76-tuxcare.2" } ] }