{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e2e554c5-6695-5cde-bb59-e7c07f7cb419", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-api", "version": "8.5.100-tuxcare.5", "purl": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:50c13d22-fd5a-567d-9a93-e6e5156cfddc", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4268728b-713f-50e6-8839-f1ef3c821f65", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e513c45a-e837-5e40-8b3f-08f86bfd15e8", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c6bd7ace-8e72-510b-be4e-ade62e3b39c0", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ab43bc96-07d7-55a6-99ad-60ccd490b6b3", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d0977fb5-a288-5a9b-8c7d-c14c836a6f80", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:697ffaad-9674-5963-aa6e-daccf2f04233", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5aac6e4b-95af-5bba-95ff-64c9c9e337b2", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:32c0c651-b388-5626-a152-39bea08c046f", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:80f9db4b-1ed1-5b64-ba78-2b5b58c42b4e", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4589b932-c92a-58dd-a3ed-86943caeee05", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:155d78e7-e1ce-5001-b494-fcf437207d4f", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:50d079da-8f2e-5e62-9372-caec706e3c2c", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3e27dbb7-7a92-50c9-830e-b4aeaca4cf61", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d9c392d9-1bb7-5006-bff3-e3d6ac71e289", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b6d5b8dc-6fb0-5220-b196-fcc1159e68c0", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8f6c6d10-ce5f-56d3-b05a-0764d4b948a6", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:85025d78-49e8-54d8-9681-3a0bc1fd4399", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5c89d355-7001-5fb6-b0cc-1f1d72601870", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2fb4e67d-d8ee-5542-bf2c-b01c111312b9", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d2c4e77d-f5c0-5720-a6b8-0e2a20168b66", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:300a557c-a4d2-56ab-a9f3-dec1109586ef", "id": "CVE-2018-8014", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8014 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:69209377-cebf-5345-b1ee-0ac35b24d1ea", "id": "CVE-2018-8034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8034 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b4929d40-e0e4-54a7-b36e-aafde3295c2d", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:24e8db63-ffdb-5234-9b1f-720a32a69886", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9de45d7a-bab9-5658-ba6f-e09a8084afe0", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:68b8a00e-feb0-5df1-a763-07f68490495c", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-api 8.5.100-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d073dffe-dce9-541d-874b-ba0d3c899007", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:af2ea554-9b03-5789-98a7-a8b857677d36", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d975cec3-ea84-5380-b083-64fe470aee23", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0659101d-6585-5ecb-b87b-429c8c5e2ae4", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fab8d4d1-f6dc-534b-bf81-120912b5f49f", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:69db0228-2ab6-592f-b8f4-5aebfc35fd74", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fcc7249c-5488-58c3-9ac8-a2ebab64db13", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bc827597-0781-5e20-9b42-92f8748f03a4", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e052977b-8866-58c2-8b0d-0757fe04c8ae", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:86a9ae65-433e-55aa-9dda-17f7f15389e5", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6143ff01-dcda-5ec6-b139-4023c820980e", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9e368c77-d069-5bee-8394-e586b5c09835", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:664f156f-ca56-530a-9e01-7327b9114d60", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:698ce760-9ada-59e5-abc5-e112beb75756", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1d2f7e72-4133-55b4-9e42-56dfd25892c5", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:73c85623-c5ab-54c2-87b3-d10c2afe9063", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:88af5b1d-058f-50c0-abd8-d089e1b4220b", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3f4db26e-9739-5b8e-a749-954e5270df7e", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1e95c78c-4b2d-5ac7-88c1-afb9ec255b4b", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:50ea22cc-b5de-5141-ba94-63bb53e284c7", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5e93411c-089c-5877-aeac-ec177713abd3", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:866f6719-1506-53a2-aac1-5a9cf3073d07", "id": "CVE-2025-52520", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52520 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c20a4f23-4986-5017-87da-2b535d73d977", "id": "CVE-2025-53506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-53506 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5d9921c2-d47d-5441-b372-fd63390fe82e", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a152c56f-58f2-5cc9-939f-b0cd95aadb83", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8293401a-3170-5a64-99fb-8f2f4522844b", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:00988135-79af-543e-a6a1-c5dfdf40c8c2", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:857ea663-d894-5696-9857-bcaa5eb3e0d5", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3ed9c575-f407-5448-a2cc-96b8301c870a", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6791fcea-9472-5a0b-9dea-e34e3e7510df", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6460d8af-bcac-5db0-81f2-b51b20a3fa96", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bb42bb38-271e-5b76-9dd8-c430f109e5fd", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:700bb2cd-ca60-52da-8214-5455a807c5ac", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.5" } ] }