{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b5ab0f20-5139-59eb-b421-98a64fe77ecf", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:pypi/flask@0.12.5", "type": "library", "name": "flask", "version": "0.12.5", "purl": "pkg:pypi/flask@0.12.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:39fd2c74-64b1-56e1-a2f8-9306e3852001", "id": "CVE-2023-23934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-23934 affects version 0.12.5 of flask." }, "affects": [ { "ref": "pkg:pypi/flask@0.12.5" } ] }, { "bom-ref": "urn:uuid:6d02fa54-c29b-52a4-a2c5-0bfdc3af79b7", "id": "CVE-2023-25577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-25577 affects version 0.12.5 of flask." }, "affects": [ { "ref": "pkg:pypi/flask@0.12.5" } ] }, { "bom-ref": "urn:uuid:caf2f1e0-05d9-5e87-86fd-67f235fa72a0", "id": "CVE-2023-30861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-30861 is fixed in version 0.12.5 of flask." }, "affects": [ { "ref": "pkg:pypi/flask@0.12.5" } ] }, { "bom-ref": "urn:uuid:fae62517-aebe-5d04-9c8c-bde0f77454f0", "id": "CVE-2023-46136", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-46136 affects version 0.12.5 of flask." }, "affects": [ { "ref": "pkg:pypi/flask@0.12.5" } ] }, { "bom-ref": "urn:uuid:3cb14f49-9dcf-51bf-b7d1-8ccb50b37aa6", "id": "CVE-2024-34069", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-34069 affects version 0.12.5 of flask." }, "affects": [ { "ref": "pkg:pypi/flask@0.12.5" } ] }, { "bom-ref": "urn:uuid:c107b059-90ab-5cdd-9a19-220e7fa113e8", "id": "CVE-2024-49766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-49766 affects version 0.12.5 of flask." }, "affects": [ { "ref": "pkg:pypi/flask@0.12.5" } ] }, { "bom-ref": "urn:uuid:c772e10d-f699-5d6a-8779-5b91fb46929c", "id": "CVE-2024-49767", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-49767 affects version 0.12.5 of flask." }, "affects": [ { "ref": "pkg:pypi/flask@0.12.5" } ] }, { "bom-ref": "urn:uuid:644a5917-42ce-5961-9998-7e34e174fc90", "id": "CVE-2025-66221", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66221 affects version 0.12.5 of flask." }, "affects": [ { "ref": "pkg:pypi/flask@0.12.5" } ] }, { "bom-ref": "urn:uuid:464070b2-6034-5afa-882a-6d4be7a83479", "id": "CVE-2026-21860", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-21860 affects version 0.12.5 of flask." }, "affects": [ { "ref": "pkg:pypi/flask@0.12.5" } ] }, { "bom-ref": "urn:uuid:78fc6d8b-2b8b-52c0-9f89-05dc0db39497", "id": "CVE-2026-27199", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27199 affects version 0.12.5 of flask." }, "affects": [ { "ref": "pkg:pypi/flask@0.12.5" } ] }, { "bom-ref": "urn:uuid:621286c1-fa46-5682-a2bd-93c2c9223102", "id": "CVE-2026-27205", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-27205 is fixed in version 0.12.5 of flask." }, "affects": [ { "ref": "pkg:pypi/flask@0.12.5" } ] } ], "dependencies": [ { "ref": "pkg:pypi/flask@0.12.5" } ] }