{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:66cf185b-a208-55ed-9872-84d5aa4a7dfd",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:npm/tar@6.0.2-tuxcare.4",
      "type": "library",
      "name": "tar",
      "version": "6.0.2-tuxcare.4",
      "purl": "pkg:npm/tar@6.0.2-tuxcare.4"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:f195b234-89fc-5fd0-b156-bbe611b5fc58",
      "id": "CVE-2021-32803",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2021-32803 is fixed in version 6.0.2-tuxcare.4 of tar."
      },
      "affects": [
        {
          "ref": "pkg:npm/tar@6.0.2-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f8c88882-2c40-578d-a79a-5021d410edac",
      "id": "CVE-2021-32804",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2021-32804 is fixed in version 6.0.2-tuxcare.4 of tar."
      },
      "affects": [
        {
          "ref": "pkg:npm/tar@6.0.2-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:a3de28cc-7261-58a8-8335-d468b76059b4",
      "id": "CVE-2021-37701",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2021-37701 is fixed in version 6.0.2-tuxcare.4 of tar."
      },
      "affects": [
        {
          "ref": "pkg:npm/tar@6.0.2-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:6476f31d-7209-595e-87a6-1918312a9d38",
      "id": "CVE-2021-37712",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2021-37712 is fixed in version 6.0.2-tuxcare.4 of tar."
      },
      "affects": [
        {
          "ref": "pkg:npm/tar@6.0.2-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:dde833eb-47b8-5e81-a927-ceae328be636",
      "id": "CVE-2021-37713",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2021-37713 is fixed in version 6.0.2-tuxcare.4 of tar."
      },
      "affects": [
        {
          "ref": "pkg:npm/tar@6.0.2-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:4e0f6db9-0225-574c-b9e9-ab4aad2ace14",
      "id": "CVE-2024-28863",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-28863 is fixed in version 6.0.2-tuxcare.4 of tar."
      },
      "affects": [
        {
          "ref": "pkg:npm/tar@6.0.2-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:6703bd34-989a-5030-9f14-1618e5e4c559",
      "id": "CVE-2026-23745",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-23745 affects version 6.0.2-tuxcare.4 of tar."
      },
      "affects": [
        {
          "ref": "pkg:npm/tar@6.0.2-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c789e3ea-f89c-59e1-a9c3-fccd4b591f4d",
      "id": "CVE-2026-23950",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-23950 affects version 6.0.2-tuxcare.4 of tar."
      },
      "affects": [
        {
          "ref": "pkg:npm/tar@6.0.2-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:834d016f-5b61-5ce4-a94f-87efe6bffc7e",
      "id": "CVE-2026-24842",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-24842 affects version 6.0.2-tuxcare.4 of tar."
      },
      "affects": [
        {
          "ref": "pkg:npm/tar@6.0.2-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:3b81e387-a6a6-55e6-b0cc-8b12a0cdbad3",
      "id": "CVE-2026-26960",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-26960 affects version 6.0.2-tuxcare.4 of tar."
      },
      "affects": [
        {
          "ref": "pkg:npm/tar@6.0.2-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:6153ff37-bab2-501c-aca8-5f826d2e95f8",
      "id": "CVE-2026-29786",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-29786 affects version 6.0.2-tuxcare.4 of tar."
      },
      "affects": [
        {
          "ref": "pkg:npm/tar@6.0.2-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c8505b96-dcc6-5e4a-bd76-e2c41546e6a4",
      "id": "CVE-2026-31802",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-31802 affects version 6.0.2-tuxcare.4 of tar."
      },
      "affects": [
        {
          "ref": "pkg:npm/tar@6.0.2-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:6c328818-0a1d-5fef-a866-344f1c799b01",
      "id": "CVE-2026-34043",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-34043 is fixed in version 6.0.2-tuxcare.4 of tar."
      },
      "affects": [
        {
          "ref": "pkg:npm/tar@6.0.2-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:41299d06-a1cb-5ddf-84ca-8d57ff9c0be6",
      "id": "GHSA-5c6j-r48x-rmvq",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability GHSA-5c6j-r48x-rmvq is fixed in version 6.0.2-tuxcare.4 of tar."
      },
      "affects": [
        {
          "ref": "pkg:npm/tar@6.0.2-tuxcare.4"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:npm/tar@6.0.2-tuxcare.4"
    }
  ]
}