github.com/CycloneDX/sbom-utility@v0.16.0/examples/cyclonedx/VEX/Use-Cases/Case-13/README.md

github.com/CycloneDX/sbom-utility@v0.16.0/examples/cyclonedx/VEX/Use-Cases/Case-13/README.md (about)

     1  # VEX Use Case 13
     2  
     3  | Multiple Products | All Versions | Single Vulnerability | Affected and Not Affected |
     4  | --- | --- | --- | --- |
     5  
     6  A VEX states that CVE-2020-25649 is not exploitable in all versions of Acme Product 1 and Acme Product 2, but is exploitable in all versions of Acme Product 3.
     7  
     8  In this example, there are three products and an SBOM for each. The inventory of bom-1, bom-2, and bom-3 was
     9  intentionally omitted for simplicity of the example.