{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8f7bf13a-aa4f-50ce-9858-6d20c31e17cc", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-annotations-api", "version": "10.1.18-tuxcare.3", "purl": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d372e86e-066e-5cb1-9998-9a88bffd268e", "id": "CVE-2024-23672", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23672 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:092e153f-24f3-5829-9851-2001313af169", "id": "CVE-2024-24549", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-24549 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8eb12edd-37bc-5d18-847c-38652e2b8012", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8c3fffb6-a5d0-5e5b-85a6-b4910ef9eaee", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:35c0f811-7779-5539-a2fa-962ef9f9a959", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b95bae33-cb8e-5120-a4c5-14f96c727a46", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bf515fc8-a2b8-5d11-9758-a1cf079ecee8", "id": "CVE-2024-54677", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-54677 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:503d3dc5-cb5e-57dc-b636-b2296b8f1438", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:752efbef-d69f-5fdb-b949-cbe0a8ed1693", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e58c57c3-cf16-51fb-bc55-37628b527def", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3458c114-98d6-59de-b6b1-ed25df924215", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:efe215b7-171c-527e-bb49-f234c7e00b6c", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d4c67b0f-c7db-50f5-a73d-e31fd61eca4d", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3ed302a6-cf52-5e7c-8359-fff58fd78ce5", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4d5dd7a6-0cba-584f-80fc-20569150a292", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a9b973d5-a843-5e19-b93c-c6a13c37b14a", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9f89e19e-c451-5007-af62-63e025540a73", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6e46fff0-bf37-5bb8-a706-9a2e2a9813ec", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f464d333-4afb-5c73-8948-db6f11a0aadb", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:930657cb-f4cc-56c5-a62f-8d61c4d6a9ab", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:33e77aa2-1efb-55b1-85a9-fcc7d056c313", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6d4b6dc4-509b-5517-acde-3e45dd14c229", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1dfe0b48-5d64-5466-b3a5-71bb016c59bc", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cdad0ff2-b4b5-5afa-ae6b-1fe6fc0c563b", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3c1be9c8-9c42-529c-97f3-a40cad38b82e", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0a932dee-bf1b-5670-9588-64be10c3a274", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c4ecc14b-7a67-5f0c-b6e7-a6a0f7a014b6", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:868f7ded-e8eb-5648-bc2a-a2bf4dd5a2f0", "id": "CVE-2026-29145", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29145 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e8e4e18e-dc2d-5814-8f96-2534478b747d", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:45aea768-a3c6-518a-813d-b5280eadf7f4", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:88a51be1-59af-515e-be66-4d0f70691659", "id": "CVE-2026-34483", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-34483 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:14efff0e-3bfc-5a82-ba72-5fa9bed94e31", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-annotations-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.18-tuxcare.3" } ] }