{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:b58133e2-46ec-50bc-b0f6-b31a8e92902f",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:npm/bootstrap@2.3.2",
      "type": "library",
      "name": "bootstrap",
      "version": "2.3.2",
      "purl": "pkg:npm/bootstrap@2.3.2"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:40b0938d-6652-5a6f-b9ea-ac85f6c3447d",
      "id": "CVE-2016-10735",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2016-10735 affects version 2.3.2 of bootstrap."
      },
      "affects": [
        {
          "ref": "pkg:npm/bootstrap@2.3.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:4df2a63e-189d-526a-a8ca-5cac4b23097e",
      "id": "CVE-2018-14040",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2018-14040 affects version 2.3.2 of bootstrap."
      },
      "affects": [
        {
          "ref": "pkg:npm/bootstrap@2.3.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:1bb089d8-c2a4-5fb5-889b-0b3222e2b96e",
      "id": "CVE-2018-14042",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2018-14042 affects version 2.3.2 of bootstrap."
      },
      "affects": [
        {
          "ref": "pkg:npm/bootstrap@2.3.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f006374e-e98e-5697-8a15-dbb966b104cf",
      "id": "CVE-2018-20676",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2018-20676 affects version 2.3.2 of bootstrap."
      },
      "affects": [
        {
          "ref": "pkg:npm/bootstrap@2.3.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f9b666dc-8cd2-5b80-93dc-c88642b687da",
      "id": "CVE-2018-20677",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2018-20677 affects version 2.3.2 of bootstrap."
      },
      "affects": [
        {
          "ref": "pkg:npm/bootstrap@2.3.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:95d889a6-106e-5f59-8346-4e204158382c",
      "id": "CVE-2024-6484",
      "analysis": {
        "state": "false_positive",
        "detail": "Vulnerability CVE-2024-6484 is a false positive for bootstrap 2.3.2."
      },
      "affects": [
        {
          "ref": "pkg:npm/bootstrap@2.3.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:ff88d5db-81de-5971-823e-9c621886d126",
      "id": "CVE-2024-6485",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-6485 affects version 2.3.2 of bootstrap."
      },
      "affects": [
        {
          "ref": "pkg:npm/bootstrap@2.3.2"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:npm/bootstrap@2.3.2"
    }
  ]
}