{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:282af66a-0d3c-5d24-bb1d-84c96fdf8c96", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:pypi/numpy@1.16.0", "type": "library", "name": "numpy", "version": "1.16.0", "purl": "pkg:pypi/numpy@1.16.0" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4202e9f4-d2d1-5219-a9ca-7755e63cad42", "id": "CVE-2019-6446", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-6446 is fixed in version 1.16.0 of numpy." }, "affects": [ { "ref": "pkg:pypi/numpy@1.16.0" } ] }, { "bom-ref": "urn:uuid:6692de2f-7373-58f6-be9e-5f6b810b2441", "id": "CVE-2021-33430", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-33430 affects version 1.16.0 of numpy." }, "affects": [ { "ref": "pkg:pypi/numpy@1.16.0" } ] }, { "bom-ref": "urn:uuid:bf5c9428-f6ce-50a9-adb4-5e3ed06e98a4", "id": "CVE-2021-34141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34141 affects version 1.16.0 of numpy." }, "affects": [ { "ref": "pkg:pypi/numpy@1.16.0" } ] }, { "bom-ref": "urn:uuid:eedbc132-f85e-5964-83cc-ddb0362cc11e", "id": "CVE-2021-41495", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41495 affects version 1.16.0 of numpy." }, "affects": [ { "ref": "pkg:pypi/numpy@1.16.0" } ] }, { "bom-ref": "urn:uuid:d3d4ba2e-b9a3-5012-b51a-eb239161377d", "id": "CVE-2021-41496", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-41496 is fixed in version 1.16.0 of numpy." }, "affects": [ { "ref": "pkg:pypi/numpy@1.16.0" } ] } ], "dependencies": [ { "ref": "pkg:pypi/numpy@1.16.0" } ] }