{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e8a90c1e-0361-564e-8f74-a78d26ce8337", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk18on@1.76-tuxcare.2", "type": "library", "group": "org.bouncycastle", "name": "bcprov-ext-jdk18on", "version": "1.76-tuxcare.2", "purl": "pkg:maven/org.bouncycastle/bcprov-ext-jdk18on@1.76-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8afa11e5-e15d-5ca7-9c22-9f030663be1f", "id": "CVE-2024-29857", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29857 is fixed in version 1.76-tuxcare.2 of org.bouncycastle:bcprov-ext-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk18on@1.76-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:47e8848f-4f3d-57c3-a603-c25231be9069", "id": "CVE-2024-30171", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-30171 is fixed in version 1.76-tuxcare.2 of org.bouncycastle:bcprov-ext-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk18on@1.76-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dd10dce8-10bd-56b3-a643-84615a88c588", "id": "CVE-2024-30172", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-30172 is fixed in version 1.76-tuxcare.2 of org.bouncycastle:bcprov-ext-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk18on@1.76-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:73af9128-a766-56eb-ae04-20eea9b00f90", "id": "CVE-2024-34447", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34447 is fixed in version 1.76-tuxcare.2 of org.bouncycastle:bcprov-ext-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk18on@1.76-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e796492d-442a-5063-a714-6e6afdb0b0d0", "id": "CVE-2025-8885", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-8885 is fixed in version 1.76-tuxcare.2 of org.bouncycastle:bcprov-ext-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk18on@1.76-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4d9a8508-8bd8-5844-b090-85fc8cf9d126", "id": "CVE-2025-8916", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-8916 is fixed in version 1.76-tuxcare.2 of org.bouncycastle:bcprov-ext-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk18on@1.76-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0220fea3-4c4f-596f-a346-632373907fa5", "id": "CVE-2026-3505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-3505 affects version 1.76-tuxcare.2 of org.bouncycastle:bcprov-ext-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk18on@1.76-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9fc7bbb3-3437-5dd1-b9f5-a8772b22dc29", "id": "CVE-2026-5588", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5588 affects version 1.76-tuxcare.2 of org.bouncycastle:bcprov-ext-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk18on@1.76-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fb87de3e-c6bb-5e06-8b3a-31a17ce2575d", "id": "CVE-2026-5598", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5598 affects version 1.76-tuxcare.2 of org.bouncycastle:bcprov-ext-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk18on@1.76-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.bouncycastle/bcprov-ext-jdk18on@1.76-tuxcare.2" } ] }