{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:11b4c3ad-0b27-5109-9d53-25fd03d3f590", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.lucene/lucene-analyzers-phonetic@5.5.5-tuxcare.2", "type": "library", "group": "org.apache.lucene", "name": "lucene-analyzers-phonetic", "version": "5.5.5-tuxcare.2", "purl": "pkg:maven/org.apache.lucene/lucene-analyzers-phonetic@5.5.5-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f1ffea5d-3c6e-54d3-9703-470868cfb336", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-phonetic." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-phonetic@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c55b85c9-6004-5fb0-85d4-5bd33965d3fc", "id": "CVE-2018-11802", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11802 is fixed in version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-phonetic." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-phonetic@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d167c460-e4e5-5d2c-9c76-ae5dc2ffbad5", "id": "CVE-2018-1308", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1308 is fixed in version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-phonetic." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-phonetic@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1670d4a3-3377-5dbc-935c-b57aa47774b8", "id": "CVE-2019-0192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0192 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-phonetic." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-phonetic@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:da6dc54a-14fb-5cf1-93fc-a840e3b80772", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-phonetic." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-phonetic@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9e45c037-9fa2-5408-bba7-1890e3982e54", "id": "CVE-2019-12409", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-12409 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-phonetic." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-phonetic@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8d3c72a6-d286-5198-9e05-f9cfb381eda8", "id": "CVE-2019-17558", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17558 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-phonetic." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-phonetic@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:deef6bfa-307e-5ac9-be12-c5d70ceff9dc", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-phonetic." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-phonetic@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:27dc5e48-8250-510c-b93f-f30f74293545", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-phonetic." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-phonetic@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e822a507-93d4-5b36-bffc-f465ce160796", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-phonetic." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-phonetic@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:254e6884-500c-54c5-bfe1-257720157b7a", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-phonetic." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-phonetic@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f44c138a-66b7-5d6b-b4be-3a20cd2bb6a2", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-phonetic." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-phonetic@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:02b02b65-e77a-5beb-a897-89a419f34b5d", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-phonetic." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-phonetic@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:44870dc6-7ee1-5153-aa3d-5a18c51798a6", "id": "CVE-2024-45216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45216 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-phonetic." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-phonetic@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:66b6f102-940c-52f9-80cf-aef7b8ff9903", "id": "CVE-2024-45772", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45772 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-phonetic." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-phonetic@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2b44e931-d5ba-51a4-b793-e50fc82838d0", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-phonetic." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-phonetic@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b9a065f5-ad7b-5fc2-877f-7e559f86ae07", "id": "CVE-2026-22022", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22022 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-phonetic." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-phonetic@5.5.5-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-phonetic@5.5.5-tuxcare.2" } ] }