{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:cc5619b8-6df3-51e3-b69c-f4df84ae8636", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.bouncycastle/bcpkix-jdk18on@1.76-tuxcare.3", "type": "library", "group": "org.bouncycastle", "name": "bcpkix-jdk18on", "version": "1.76-tuxcare.3", "purl": "pkg:maven/org.bouncycastle/bcpkix-jdk18on@1.76-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ed290fc7-835d-5394-b9b9-218c6ef5e0e3", "id": "CVE-2024-29857", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29857 is fixed in version 1.76-tuxcare.3 of org.bouncycastle:bcpkix-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk18on@1.76-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:80dc897e-8da8-5317-82fa-9f2a75f9c48c", "id": "CVE-2024-30171", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-30171 is fixed in version 1.76-tuxcare.3 of org.bouncycastle:bcpkix-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk18on@1.76-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:236c461e-508c-5db9-bc01-37505d99d293", "id": "CVE-2024-30172", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-30172 is fixed in version 1.76-tuxcare.3 of org.bouncycastle:bcpkix-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk18on@1.76-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0d03c074-7260-5349-8339-125bdb0d6a25", "id": "CVE-2024-34447", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34447 is fixed in version 1.76-tuxcare.3 of org.bouncycastle:bcpkix-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk18on@1.76-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6cccebd0-e6e8-57f7-abde-a8af18f97390", "id": "CVE-2025-8885", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-8885 is fixed in version 1.76-tuxcare.3 of org.bouncycastle:bcpkix-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk18on@1.76-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f7fa0c3f-2bbb-5fd3-bde6-191814a306f8", "id": "CVE-2025-8916", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-8916 is fixed in version 1.76-tuxcare.3 of org.bouncycastle:bcpkix-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk18on@1.76-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:07bde0b5-515e-5bdd-bd47-caca4efa71fc", "id": "CVE-2026-3505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-3505 affects version 1.76-tuxcare.3 of org.bouncycastle:bcpkix-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk18on@1.76-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:25f7b81e-0cb9-5519-b587-f710b8dcf3ed", "id": "CVE-2026-5588", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5588 affects version 1.76-tuxcare.3 of org.bouncycastle:bcpkix-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk18on@1.76-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b02696a7-3746-564f-b558-6ff8bdbe53fa", "id": "CVE-2026-5598", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5598 affects version 1.76-tuxcare.3 of org.bouncycastle:bcpkix-jdk18on." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk18on@1.76-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk18on@1.76-tuxcare.3" } ] }