{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8caa46be-c45c-5ed1-bbe6-d2dd5d5138ba", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.bouncycastle/bcpkix-jdk14@1.64-tuxcare.4", "type": "library", "group": "org.bouncycastle", "name": "bcpkix-jdk14", "version": "1.64-tuxcare.4", "purl": "pkg:maven/org.bouncycastle/bcpkix-jdk14@1.64-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5b46db02-8456-51a0-9ef3-f05ee356fcd8", "id": "CVE-2020-0187", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-0187 is fixed in version 1.64-tuxcare.4 of org.bouncycastle:bcpkix-jdk14." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk14@1.64-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2a70c3b0-0f70-54ca-b2f3-bb6deeae12b0", "id": "CVE-2020-15522", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-15522 is fixed in version 1.64-tuxcare.4 of org.bouncycastle:bcpkix-jdk14." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk14@1.64-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:44a080bd-8450-515a-8e23-f6688547bc08", "id": "CVE-2023-33201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-33201 affects version 1.64-tuxcare.4 of org.bouncycastle:bcpkix-jdk14." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk14@1.64-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:80cdc2b3-4098-5330-8caf-49fe4dd1184a", "id": "CVE-2023-33202", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-33202 affects version 1.64-tuxcare.4 of org.bouncycastle:bcpkix-jdk14." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk14@1.64-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4c7a0087-a3c7-5e67-b9ac-2db7d8510ac8", "id": "CVE-2024-29857", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29857 is fixed in version 1.64-tuxcare.4 of org.bouncycastle:bcpkix-jdk14." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk14@1.64-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6e83879b-6e70-5f9d-a866-05fea2df4d6f", "id": "CVE-2024-30171", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-30171 affects version 1.64-tuxcare.4 of org.bouncycastle:bcpkix-jdk14." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk14@1.64-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e012ce12-d254-5aee-9399-a9858168c20c", "id": "CVE-2024-34447", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-34447 affects version 1.64-tuxcare.4 of org.bouncycastle:bcpkix-jdk14." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk14@1.64-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e60f0414-5a82-57c0-9a00-1bba37072937", "id": "CVE-2025-8885", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-8885 affects version 1.64-tuxcare.4 of org.bouncycastle:bcpkix-jdk14." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk14@1.64-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:eb19c4e7-5f21-53b9-93aa-14e945bfff53", "id": "CVE-2025-8916", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-8916 is fixed in version 1.64-tuxcare.4 of org.bouncycastle:bcpkix-jdk14." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk14@1.64-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6a5b63c4-2446-585f-bbb3-3346a75bf5e9", "id": "CVE-2026-3505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-3505 affects version 1.64-tuxcare.4 of org.bouncycastle:bcpkix-jdk14." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk14@1.64-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ee986ee6-d29d-578f-aa05-ae61005d2d61", "id": "CVE-2026-5588", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5588 affects version 1.64-tuxcare.4 of org.bouncycastle:bcpkix-jdk14." }, "affects": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk14@1.64-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.bouncycastle/bcpkix-jdk14@1.64-tuxcare.4" } ] }