{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8388794e-9eb4-5a3c-9382-b2898e634570", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-api", "version": "8.5.100.tuxcare.2", "purl": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:58a2022d-8145-53aa-9524-7fcc058d05cd", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:393664e3-f37c-5eec-9dec-bab9725163e5", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8167cf3c-2810-5f8a-8649-c8a43651aa7c", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:06797799-aa86-52db-8337-3fcc3d05f6f2", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6c783293-2209-50b8-b543-2c41b28d7619", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bf2f5f09-8afb-53d2-9fb7-c1db348a40ea", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:300c9263-67a7-5fe6-a2a6-05adf6d2e97c", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b07e9d96-79f1-5ae4-ac48-e03b1af4b942", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4c693166-2542-5397-847f-35d1297cd4b2", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:86128622-8dc3-5645-a393-efd029d237b6", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d4ed44b7-0679-562e-89e2-e79d9e22742d", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d568906d-73ec-5bea-bfb3-4c47d2dc048c", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:056e70ed-4bf6-5bfe-90b1-1516378edfab", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:417a3d94-20a9-5776-837a-cf8bf71a730b", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:67a96d29-d01a-5ba8-b9a0-77bd386ba892", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:edf0b65c-e160-5369-9170-22ae7032c26a", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7bf5e237-4c21-514f-90ea-90b3a4573109", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:50300f49-d483-54ab-8ea1-05c6c6bacfb8", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b004be4e-0663-5e4c-9068-7edef8b159cd", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c56b25f6-2deb-5873-b41a-bdde2b10ef42", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a2727309-0ee3-54d8-803d-5a78c2043833", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aaaa4a8b-ed61-562e-b8af-d313599e5265", "id": "CVE-2018-8014", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8014 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e86ff1a9-3701-500d-96b2-c013361eaf99", "id": "CVE-2018-8034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8034 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bf70a900-04f1-507e-bea6-7c697ab3935d", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1d4c4d9e-3b45-54ee-9910-79b2937501f9", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:22bccc30-8325-568b-bd6c-c9285e9d1da3", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c0a6c0b7-c39e-5f68-80d6-8883add2643c", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-api 8.5.100.tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2ba61e5e-b9f3-5e2a-a46c-fba2451a3162", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:40182fa9-6a6b-5270-8827-81f6e4d46e9a", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1f5dadf6-ad8d-5bb3-aade-d7f626004bbb", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:75d9acc1-3f52-5b19-8689-ce3369a76030", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d1ddd79c-dd71-5df7-8471-ca5d76a659c5", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:301d8287-66a6-5789-91b7-36d18de0845a", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0896fd56-7df1-5fca-993f-8f90c89bfc8a", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:706874be-aa88-5dc3-b2dc-f496f5e48642", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c731141c-6cde-5084-97d6-de2e47069182", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:58d1357c-2fd9-5731-8bbe-7a6c1de0783a", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e773c3fd-4802-5168-88e0-b95b2b47ec6f", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dddfac5d-1ce7-5231-a035-9cf9961ed7fb", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cb83d87c-5e3f-5279-8ac6-785dd862b555", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:88f71af9-2b78-5e31-8028-f87e7a76f58f", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3524f2ae-4ebd-5f22-9e26-1b1c591cd8e4", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:84446311-65ba-5d42-976a-95f1e06be8a0", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b157474e-d850-55b7-8ca0-8f5ea1c077a4", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c2f14e72-8d68-5d98-9ec0-9893f283b7a9", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4257fdba-aeaf-51d1-8ac4-d41ea7cdaf30", "id": "CVE-2025-48989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48989 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fba75faf-c210-54b3-904e-e34d9054f660", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2e51c3e6-6870-5fd2-84ec-78f1412a8e83", "id": "CVE-2025-52434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52434 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:993c9605-7659-5826-83fd-960d24539dfa", "id": "CVE-2025-52520", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52520 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0fc3ada0-4143-5ce6-b032-a8255f105be8", "id": "CVE-2025-53506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-53506 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:32bcd417-d88a-5b1a-bde5-320127ecd2df", "id": "CVE-2025-55668", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55668 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8798b839-9ef6-5b04-aa3e-ffc6188106ea", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2e5c99f7-4fe9-5fca-b2e7-e1e11d257983", "id": "CVE-2025-55754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55754 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ced0b4f9-3311-5dec-922d-8c2f4bfbcbd5", "id": "CVE-2025-61795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-61795 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:40dd7233-3d74-5f93-af2c-12ad5cea62ff", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e49a792a-bb4f-5640-879b-d6b52eb3595b", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:895913a9-d278-5318-a35f-7e96db4da298", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c7e4a301-02cc-520a-814f-36a0033ae179", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ae39459e-3f7f-5f82-86bd-de4870c78e0d", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b131f1b-4671-5b22-bf65-918b2fceec7a", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100.tuxcare.2" } ] }