{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c8276605-5940-50e5-854a-ee30356a9f85", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/hawk@1.0.0", "type": "library", "name": "hawk", "version": "1.0.0", "purl": "pkg:npm/hawk@1.0.0" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:83d4256c-8f74-5bbf-b98f-502cadecdee0", "id": "CVE-2017-20162", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-20162 affects version 1.0.0 of hawk." }, "affects": [ { "ref": "pkg:npm/hawk@1.0.0" } ] }, { "bom-ref": "urn:uuid:7e6ec87c-77b0-5d2a-bda3-1518dbc4505c", "id": "CVE-2018-3739", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-3739 affects version 1.0.0 of hawk." }, "affects": [ { "ref": "pkg:npm/hawk@1.0.0" } ] }, { "bom-ref": "urn:uuid:92e4a7b0-da59-5984-8c98-4d8c12da01e6", "id": "CVE-2021-33623", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-33623 affects version 1.0.0 of hawk." }, "affects": [ { "ref": "pkg:npm/hawk@1.0.0" } ] }, { "bom-ref": "urn:uuid:440b1beb-21b4-5356-8d57-0c25592d9c43", "id": "CVE-2024-47178", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47178 affects version 1.0.0 of hawk." }, "affects": [ { "ref": "pkg:npm/hawk@1.0.0" } ] }, { "bom-ref": "urn:uuid:d9fc9081-6d38-5a9e-90fb-0bd1d9395f32", "id": "GHSA-pc5p-h8pf-mvwp", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-pc5p-h8pf-mvwp affects version 1.0.0 of hawk." }, "affects": [ { "ref": "pkg:npm/hawk@1.0.0" } ] }, { "bom-ref": "urn:uuid:4772b853-1313-5e21-8e32-751ccc89773c", "id": "GHSA-qrg3-f6h6-vq8q", "analysis": { "state": "false_positive", "detail": "Vulnerability GHSA-qrg3-f6h6-vq8q is a false positive for hawk 1.0.0." }, "affects": [ { "ref": "pkg:npm/hawk@1.0.0" } ] } ], "dependencies": [ { "ref": "pkg:npm/hawk@1.0.0" } ] }