{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e2153653-d931-5926-9d64-b2f5abda1131", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2", "type": "library", "group": "org.apache.tomcat.embed", "name": "tomcat-embed-core", "version": "10.1.18-tuxcare.2", "purl": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ffe5ff65-e807-5ad3-8c11-067b83f28855", "id": "CVE-2024-23672", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23672 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7dfe26de-fb9c-503f-bffe-c248521a4285", "id": "CVE-2024-24549", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-24549 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1905d85f-5392-5596-aca7-940562b2c30b", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bc340fc1-313e-5734-84d2-e8a6ebab13a8", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0101d091-0ffb-52ad-963a-7139fe1a0cdf", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:30a4e277-b962-557b-97f9-79671fe1216f", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1c5332f3-c77b-505b-9bed-be5d1bd2113d", "id": "CVE-2024-54677", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-54677 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d41d2d3a-51c1-54ec-9c63-f34b53f8555f", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dea41a1c-4233-514b-bad5-996eb4bbea33", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4e059a60-2e06-50e6-9d31-3b0d74487b02", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:873eb72a-de8e-5616-a2ed-b28a5bf5eec1", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:97ec3b46-ae9a-50bd-911c-cad734153b75", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:474cebf9-4c7e-5186-9f41-2800b3d7502a", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:35b1c8ec-df68-58d2-8877-8637158904b7", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:707afaa0-f04c-564c-b112-0c1f311607b8", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a9ba0220-0817-5f22-864d-102f54415cd7", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:57993c8b-ef7e-5dab-b7f7-32e7f0a05372", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:10faeab3-97b3-5bbd-a191-98dfc1ba599d", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:130e91e1-b34e-5b9a-88b3-11c9f3e7e7c1", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:19e284c2-46d5-5015-9b65-1ddfce548158", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0d9e8c0a-1cba-5d86-86b3-6500296630bb", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:69e7b65e-16af-5d2a-a8f4-65c8ba744c28", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5c91a70c-cb4a-55f7-8ed7-747d55c84161", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:785b4e9d-c695-5e5e-b651-18036f9af2da", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c6facc0b-708c-5c08-b487-9ebc2a2e5d71", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:83e3246e-79d9-5a21-a4a9-818fd2bdcc15", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8f18db4d-c13d-5294-ad4b-f551890cb7c0", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eaba4dc9-6efc-5764-a01d-a21690dd97f2", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b3ae8ef4-1b88-5f9b-b925-18e66b71164b", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e59a8503-c60a-549f-ae30-05a3c74462fa", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9e553b57-e2b7-52d2-bb57-3556ea4093ae", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b2561128-f52e-5326-bceb-4767c1208cc3", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 10.1.18-tuxcare.2 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.2" } ] }