{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:17cfda3d-70e3-5a83-bdac-bbfda1f2f77f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "MessagePack@3.1.4-tuxcare.1", "name": "MessagePack", "type": "library", "version": "3.1.4-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6e38a501-015f-52a0-97e7-d2678189d673", "id": "CVE-2026-48109", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-48109 is fixed in version 3.1.4-tuxcare.1 of MessagePack." }, "affects": [ { "ref": "MessagePack@3.1.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:97d74ef2-ada7-5d88-bb94-d60f407ca73e", "id": "CVE-2026-48512", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-48512 is fixed in version 3.1.4-tuxcare.1 of MessagePack." }, "affects": [ { "ref": "MessagePack@3.1.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ec5c5c58-f383-595e-8bc6-882d03aee6c5", "id": "CVE-2026-48513", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-48513 is fixed in version 3.1.4-tuxcare.1 of MessagePack." }, "affects": [ { "ref": "MessagePack@3.1.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e45300e-ba6f-5477-a1fd-437300692d7e", "id": "CVE-2026-48515", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-48515 is fixed in version 3.1.4-tuxcare.1 of MessagePack." }, "affects": [ { "ref": "MessagePack@3.1.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4519632f-0b12-5920-b4b3-9ed4673e62be", "id": "CVE-2026-48516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-48516 is fixed in version 3.1.4-tuxcare.1 of MessagePack." }, "affects": [ { "ref": "MessagePack@3.1.4-tuxcare.1" } ] } ], "dependencies": [ { "ref": "MessagePack@3.1.4-tuxcare.1" } ] }