{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:500ec543-c97b-5cfe-a135-1578f27f3020", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.bouncycastle/bcpkix-jdk15to18@1.76-tuxcare.1", "type": "library", "group": "org.bouncycastle", "name": "bcpkix-jdk15to18", "version": "1.76-tuxcare.1", "purl": "pkg:maven/org.bouncycastle/bcpkix-jdk15to18@1.76-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:0e4819f4-a04c-57e8-b3a6-b88fc87d46a5", "id": "CVE-2024-29857", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29857 is fixed in version 1.76-tuxcare.1 of org.bouncycastle:bcpkix-jdk15to18." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk15to18@1.76-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8a5f0e77-5163-562f-8b1e-ca6c443e14f6", "id": "CVE-2024-30171", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-30171 is fixed in version 1.76-tuxcare.1 of org.bouncycastle:bcpkix-jdk15to18." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk15to18@1.76-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b8c4323-d000-50b3-9f97-611bdfd4c813", "id": "CVE-2024-30172", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-30172 is fixed in version 1.76-tuxcare.1 of org.bouncycastle:bcpkix-jdk15to18." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk15to18@1.76-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:61927e5f-140a-55ff-90ce-0adf1729d54b", "id": "CVE-2024-34447", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34447 is fixed in version 1.76-tuxcare.1 of org.bouncycastle:bcpkix-jdk15to18." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk15to18@1.76-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d67150bb-b8d2-5c08-8711-e8e8fb9269e4", "id": "CVE-2025-8885", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-8885 is fixed in version 1.76-tuxcare.1 of org.bouncycastle:bcpkix-jdk15to18." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk15to18@1.76-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f3311b54-9c33-526a-a060-e36226a6dd97", "id": "CVE-2025-8916", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-8916 affects version 1.76-tuxcare.1 of org.bouncycastle:bcpkix-jdk15to18." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk15to18@1.76-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:93b1ec53-d7d2-5fbd-8c98-dbc7bf3ddb01", "id": "CVE-2026-3505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-3505 affects version 1.76-tuxcare.1 of org.bouncycastle:bcpkix-jdk15to18." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk15to18@1.76-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:56a62f60-d8c4-58e1-a9c6-f6fdddeb2626", "id": "CVE-2026-5588", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5588 affects version 1.76-tuxcare.1 of org.bouncycastle:bcpkix-jdk15to18." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk15to18@1.76-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5375fa53-2abb-5f51-8fb1-3d21879f5762", "id": "CVE-2026-5598", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5598 affects version 1.76-tuxcare.1 of org.bouncycastle:bcpkix-jdk15to18." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk15to18@1.76-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk15to18@1.76-tuxcare.1" } ] }