{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1095fd99-8eb3-5f82-b3eb-6edc574b0a6f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk18on@1.76-tuxcare.1", "type": "library", "group": "org.bouncycastle", "name": "bcprov-ext-jdk18on", "version": "1.76-tuxcare.1", "purl": "pkg:maven/org.bouncycastle/bcprov-ext-jdk18on@1.76-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:bb5778c2-5bec-598a-9eec-207d6ce94042", "id": "CVE-2024-29857", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29857 is fixed in version 1.76-tuxcare.1 of org.bouncycastle:bcprov-ext-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk18on@1.76-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c3f961f2-6986-5741-97d0-c359ed071b33", "id": "CVE-2024-30171", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-30171 is fixed in version 1.76-tuxcare.1 of org.bouncycastle:bcprov-ext-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk18on@1.76-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9fd6282d-2ad9-5cdc-a7e4-781ad01e0006", "id": "CVE-2024-30172", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-30172 is fixed in version 1.76-tuxcare.1 of org.bouncycastle:bcprov-ext-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk18on@1.76-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0f9f6596-63ca-572d-b22c-b70b93cfbdd5", "id": "CVE-2024-34447", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34447 is fixed in version 1.76-tuxcare.1 of org.bouncycastle:bcprov-ext-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk18on@1.76-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:95648379-f0b6-59e3-a943-bd2794cd4d74", "id": "CVE-2025-8885", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-8885 is fixed in version 1.76-tuxcare.1 of org.bouncycastle:bcprov-ext-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk18on@1.76-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fcccefc9-c156-5bd2-a571-6cbaaba3f724", "id": "CVE-2025-8916", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-8916 affects version 1.76-tuxcare.1 of org.bouncycastle:bcprov-ext-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk18on@1.76-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:05c79924-9436-56bf-9096-e417566e851e", "id": "CVE-2026-3505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-3505 affects version 1.76-tuxcare.1 of org.bouncycastle:bcprov-ext-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk18on@1.76-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:89d81290-2d53-5b0d-b622-d94be0d0d1a9", "id": "CVE-2026-5588", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5588 affects version 1.76-tuxcare.1 of org.bouncycastle:bcprov-ext-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk18on@1.76-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a34af3e1-20d9-5233-9578-b2218dc7838a", "id": "CVE-2026-5598", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5598 affects version 1.76-tuxcare.1 of org.bouncycastle:bcprov-ext-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk18on@1.76-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk18on@1.76-tuxcare.1" } ] }