{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6f0debba-cdc9-572a-974d-52b4c405ef45", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1", "type": "library", "group": "org.apache.tomcat.embed", "name": "tomcat-embed-jasper", "version": "10.1.18-tuxcare.1", "purl": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4bac2475-51f3-5196-82fe-1647dbdfb7fc", "id": "CVE-2024-23672", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23672 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:631ca1ef-bc1b-5b50-92f2-90d631f8f22e", "id": "CVE-2024-24549", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-24549 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b71b9512-ad3d-59e1-a639-7839415587e3", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d05c2055-ebc2-55e0-9455-0e2a1509f576", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:78968f8d-2026-56a3-b6f4-bb3603c354dd", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4e77b6ec-2759-5a2d-a598-2a48702e24e4", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d6affc26-1d07-5e66-a9ba-e703840a3f09", "id": "CVE-2024-54677", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-54677 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae8ca47f-aa08-5394-a861-b7d254c65a54", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c46673c4-a8a3-5708-a682-a2fb984bcd43", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7fa952c4-dff6-5c05-b1b0-3c65307aeee5", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bc1f5d3f-80fa-5d9d-aca4-6a8f89ccfed9", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:afb9cbe7-4643-58c3-888b-3c24d4746e69", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7a6f6bd3-d168-5255-b6ff-41ac5996eb7a", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ea4d2594-0b35-5c55-904a-e7f53c1e269f", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eb8e66ff-39e4-5dc1-a619-f3edf4413448", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4a50dff0-9255-5837-b3b9-f5a208fc9cd1", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b7cb331-cbf0-5fbf-b05e-7c7edd50b458", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7403c9cd-832a-5b6b-b480-0f64c63d8f10", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d26d6f61-f9f7-5b2d-8f7a-10bf022c5078", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d489e27c-30f7-526b-8daf-2ab68093ddf0", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9cc5eef8-7b1e-5fee-9a38-c2e1f78057c9", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f6cf53cd-204c-5df6-89fd-bde4f66a4786", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a9a3b1f2-0f91-513d-b1e7-2c5a33de538c", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8edd2176-594c-5286-8af0-d1ff67adb77b", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3edb8714-ddba-5824-9a9e-92e5a0f82c9f", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7dcad5a8-7f17-5e9a-ba6a-f94d239e050a", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d11f2f2d-eddd-5906-9af2-234d04ed0fe1", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ea7998f5-7f69-53ca-8c69-d2c9db46385d", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5183bca5-dabb-5670-8991-91a0ec5841ab", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c03628e5-19c5-5e64-89e5-bcf02547fc5c", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a7b0a9fb-2f5c-5fe0-a74f-328043abbfb4", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4083088e-aff9-5abc-9768-ed863bfe1f9a", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 10.1.18-tuxcare.1 of org.apache.tomcat.embed:tomcat-embed-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-jasper@10.1.18-tuxcare.1" } ] }