{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3ba04fc1-7c92-586f-8f55-0e506f412fb2", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/tar@1.0.3-tuxcare.3", "type": "library", "name": "tar", "version": "1.0.3-tuxcare.3", "purl": "pkg:npm/tar@1.0.3-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:eb080984-92b3-5f65-b0b9-35dae8e71a94", "id": "CVE-2015-8860", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-8860 is fixed in version 1.0.3-tuxcare.3 of tar." }, "affects": [ { "ref": "pkg:npm/tar@1.0.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a7f81f27-c686-5a52-a291-87d0bb610796", "id": "CVE-2018-20834", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-20834 is fixed in version 1.0.3-tuxcare.3 of tar." }, "affects": [ { "ref": "pkg:npm/tar@1.0.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:80580fac-8686-5d18-8c22-10c562d724b4", "id": "CVE-2021-32804", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-32804 is fixed in version 1.0.3-tuxcare.3 of tar." }, "affects": [ { "ref": "pkg:npm/tar@1.0.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5a3526c9-134f-5d8d-aa27-8bbd61750f99", "id": "CVE-2021-37713", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37713 is fixed in version 1.0.3-tuxcare.3 of tar." }, "affects": [ { "ref": "pkg:npm/tar@1.0.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d49063ee-2266-53ba-8ea6-4911b86875a1", "id": "CVE-2024-28863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-28863 is fixed in version 1.0.3-tuxcare.3 of tar." }, "affects": [ { "ref": "pkg:npm/tar@1.0.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:83fceeb5-9bbf-55dd-a005-625707850c2c", "id": "CVE-2026-23745", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-23745 is fixed in version 1.0.3-tuxcare.3 of tar." }, "affects": [ { "ref": "pkg:npm/tar@1.0.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cf6cc11c-abdf-59db-b298-9531e1decf81", "id": "CVE-2026-23950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-23950 is fixed in version 1.0.3-tuxcare.3 of tar." }, "affects": [ { "ref": "pkg:npm/tar@1.0.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3922350a-a8a9-5807-9c09-43f4634f725f", "id": "CVE-2026-24842", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24842 is fixed in version 1.0.3-tuxcare.3 of tar." }, "affects": [ { "ref": "pkg:npm/tar@1.0.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7195fd5b-7c04-50d4-afdc-ca20bbcfa18a", "id": "CVE-2026-26960", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-26960 is fixed in version 1.0.3-tuxcare.3 of tar." }, "affects": [ { "ref": "pkg:npm/tar@1.0.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8be934d7-833c-5342-b683-70bb1002f2ef", "id": "CVE-2026-29786", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29786 is fixed in version 1.0.3-tuxcare.3 of tar." }, "affects": [ { "ref": "pkg:npm/tar@1.0.3-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:22fc33c8-6bab-523f-9114-adf32bdf11c3", "id": "CVE-2026-31802", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-31802 is fixed in version 1.0.3-tuxcare.3 of tar." }, "affects": [ { "ref": "pkg:npm/tar@1.0.3-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:npm/tar@1.0.3-tuxcare.3" } ] }