{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:14a68338-36eb-59d0-8dc0-698d7d3e27ca", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:pypi/torchvision@0.14.1", "type": "library", "name": "torchvision", "version": "0.14.1", "purl": "pkg:pypi/torchvision@0.14.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2a36c9f0-1382-567e-bc0a-1b533f37a2d6", "id": "CVE-2024-31580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31580 affects version 0.14.1 of torchvision." }, "affects": [ { "ref": "pkg:pypi/torchvision@0.14.1" } ] }, { "bom-ref": "urn:uuid:f5721128-4579-5c92-b8be-f919c840b799", "id": "CVE-2024-31583", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31583 affects version 0.14.1 of torchvision." }, "affects": [ { "ref": "pkg:pypi/torchvision@0.14.1" } ] }, { "bom-ref": "urn:uuid:6b1a8f9e-cf45-5bba-94a5-618866bfe088", "id": "CVE-2024-7804", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-7804 is a false positive for torchvision 0.14.1." }, "affects": [ { "ref": "pkg:pypi/torchvision@0.14.1" } ] }, { "bom-ref": "urn:uuid:ac17f9a3-df49-5b1e-98a1-0fc0e6853d63", "id": "CVE-2025-2148", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-2148 affects version 0.14.1 of torchvision." }, "affects": [ { "ref": "pkg:pypi/torchvision@0.14.1" } ] }, { "bom-ref": "urn:uuid:48c15848-756d-5721-bb01-834ecb04206c", "id": "CVE-2025-2149", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-2149 affects version 0.14.1 of torchvision." }, "affects": [ { "ref": "pkg:pypi/torchvision@0.14.1" } ] }, { "bom-ref": "urn:uuid:69b37399-5f1f-5e26-a745-5b876cb51c1c", "id": "CVE-2025-2953", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-2953 affects version 0.14.1 of torchvision." }, "affects": [ { "ref": "pkg:pypi/torchvision@0.14.1" } ] }, { "bom-ref": "urn:uuid:6c2e7a1f-cfd2-5d2a-a9fd-6f174e92cf3a", "id": "CVE-2025-2998", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-2998 affects version 0.14.1 of torchvision." }, "affects": [ { "ref": "pkg:pypi/torchvision@0.14.1" } ] }, { "bom-ref": "urn:uuid:9fd1fbbe-3ad1-57fd-a5d7-cacc6d26b139", "id": "CVE-2025-2999", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-2999 affects version 0.14.1 of torchvision." }, "affects": [ { "ref": "pkg:pypi/torchvision@0.14.1" } ] }, { "bom-ref": "urn:uuid:317c06ef-cb6b-57ce-99a2-cb9d3cb45bcb", "id": "CVE-2025-3000", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-3000 affects version 0.14.1 of torchvision." }, "affects": [ { "ref": "pkg:pypi/torchvision@0.14.1" } ] }, { "bom-ref": "urn:uuid:7194bdae-87e9-5186-8853-9e209adb0844", "id": "CVE-2025-3001", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-3001 affects version 0.14.1 of torchvision." }, "affects": [ { "ref": "pkg:pypi/torchvision@0.14.1" } ] }, { "bom-ref": "urn:uuid:92310014-4c61-5160-945e-1e4e9b3e239c", "id": "CVE-2025-32434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-32434 affects version 0.14.1 of torchvision." }, "affects": [ { "ref": "pkg:pypi/torchvision@0.14.1" } ] }, { "bom-ref": "urn:uuid:5a5e5412-cd00-5310-8bcb-913a0df8be40", "id": "CVE-2025-3730", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-3730 affects version 0.14.1 of torchvision." }, "affects": [ { "ref": "pkg:pypi/torchvision@0.14.1" } ] } ], "dependencies": [ { "ref": "pkg:pypi/torchvision@0.14.1" } ] }