{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0c70f07f-1255-596c-9755-d69a7ff63fe7", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.lucene/lucene-analyzers-uima@5.5.5-tuxcare.2", "type": "library", "group": "org.apache.lucene", "name": "lucene-analyzers-uima", "version": "5.5.5-tuxcare.2", "purl": "pkg:maven/org.apache.lucene/lucene-analyzers-uima@5.5.5-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:39ff283b-f823-568f-b3f0-44e2c2419608", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-uima." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-uima@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ef2d7cd3-cac5-58f2-83b1-8eaa6fd1e392", "id": "CVE-2018-11802", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11802 is fixed in version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-uima." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-uima@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2e4ac4ed-482a-59e4-bcef-b04b4afa271d", "id": "CVE-2018-1308", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1308 is fixed in version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-uima." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-uima@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:270f21c9-82c6-5470-9b5d-b27e93cf52d8", "id": "CVE-2019-0192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0192 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-uima." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-uima@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:55ac0f3d-b6c9-589f-aa92-615fbafc44bd", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-uima." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-uima@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:869b057a-e4d7-59ee-8559-efe533c0b349", "id": "CVE-2019-12409", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-12409 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-uima." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-uima@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f9131bc2-d92f-59d7-b079-f52ab9936cc6", "id": "CVE-2019-17558", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17558 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-uima." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-uima@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:139a461c-10f7-5fbc-9b26-c19376d595b5", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-uima." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-uima@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dac940e4-392d-577b-bedd-bdf8e539e7d1", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-uima." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-uima@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:94caa187-431c-5dc1-890c-8517bbc608d5", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-uima." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-uima@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4383f00c-cc72-5ee9-9481-bb0a75cf0a71", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-uima." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-uima@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:06a09524-0558-52f4-846e-3a9fb101f7cf", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-uima." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-uima@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:deb57819-bf0b-57ab-bb2a-bc025289beb9", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-uima." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-uima@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2819694f-8098-5b2a-ae73-8f94c043c53e", "id": "CVE-2024-45216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45216 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-uima." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-uima@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3e8de51f-af8a-56a6-b9fa-3de32bbd0479", "id": "CVE-2024-45772", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45772 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-uima." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-uima@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:817b9460-408b-5013-b828-6506074ea561", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-uima." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-uima@5.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f1465b3a-244c-5db2-afc8-729709eaa2f2", "id": "CVE-2026-22022", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22022 affects version 5.5.5-tuxcare.2 of org.apache.lucene:lucene-analyzers-uima." }, "affects": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-uima@5.5.5-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.lucene/lucene-analyzers-uima@5.5.5-tuxcare.2" } ] }