{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6ef190ae-571e-5b9e-96ab-430ffcf241ca", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:pypi/requests@2.25.1", "type": "library", "name": "requests", "version": "2.25.1", "purl": "pkg:pypi/requests@2.25.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:0cc2a6c3-e575-5a16-b7a3-b3f06c649ce9", "id": "CVE-2024-35195", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-35195 is fixed in version 2.25.1 of requests." }, "affects": [ { "ref": "pkg:pypi/requests@2.25.1" } ] }, { "bom-ref": "urn:uuid:46811989-b7f3-52ae-9b2f-01048ce6036d", "id": "CVE-2024-3651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-3651 affects version 2.25.1 of requests." }, "affects": [ { "ref": "pkg:pypi/requests@2.25.1" } ] }, { "bom-ref": "urn:uuid:b22e071f-8fb5-5eba-8980-419073c70997", "id": "CVE-2024-47081", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47081 is fixed in version 2.25.1 of requests." }, "affects": [ { "ref": "pkg:pypi/requests@2.25.1" } ] }, { "bom-ref": "urn:uuid:3b74056f-dc22-5023-b37c-0c9e27ce26d5", "id": "CVE-2026-25645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25645 affects version 2.25.1 of requests." }, "affects": [ { "ref": "pkg:pypi/requests@2.25.1" } ] }, { "bom-ref": "urn:uuid:d0d66679-f90d-5518-9569-e4b5f3d3ee0c", "id": "CVE-2026-45409", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45409 affects version 2.25.1 of requests." }, "affects": [ { "ref": "pkg:pypi/requests@2.25.1" } ] } ], "dependencies": [ { "ref": "pkg:pypi/requests@2.25.1" } ] }