{
  "@context": "https://openvex.dev/ns/v0.2.0",
  "@id": "merged-vex-f35bcad4f56c7e4fde2d3e16a7399f4bf9a8d7876f7f00bc00746b98307ae910",
  "author": "info@fluent.do",
  "timestamp": "2025-09-05T14:21:45.000696082+01:00",
  "version": 1,
  "statements": [
    {
      "vulnerability": {
        "name": "CVE-2023-2953"
      },
      "timestamp": "2025-09-05T11:58:04.888079756+01:00",
      "products": [
        {
          "@id": "pkg:oci/fluent-bit"
        }
      ],
      "status": "under_investigation"
    },
    {
      "vulnerability": {
        "name": "CVE-2023-2953"
      },
      "timestamp": "2025-09-05T11:58:13.020338977+01:00",
      "products": [
        {
          "@id": "pkg:oci/fluent-bit"
        }
      ],
      "status": "not_affected",
      "justification": "inline_mitigations_already_exist",
      "impact_statement": "Fluent Bit does not use this component directly or in the way affected in the CVE."
    }
  ]
}