{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:bdfc5d2a-aab4-5bb5-b750-d0e1aa2efdd5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-api", "version": "9.0.46-tuxcare.7", "purl": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:26a28a80-2412-50fe-aa6a-c0843f8fa519", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:8a794b03-c5cf-57a0-9af8-2d0164fd3064", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e5a077e6-0908-5c6f-95f1-7c94e57b73a1", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:854d313a-a51e-5b58-89bb-142726211d21", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:27263cc0-ea72-55c6-83ae-dc6f3f75b2c1", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f86f77e7-c9f4-5ecb-9796-2025369c3773", "id": "CVE-2021-33037", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-33037 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:1b33a340-af9f-565a-8460-dd1d85077ffd", "id": "CVE-2021-42340", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-42340 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4edd5f49-3556-5eba-a12d-4d811b2a73d3", "id": "CVE-2021-43980", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43980 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:dba0f29f-916c-5c72-8762-6470c164208f", "id": "CVE-2022-23181", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-23181 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6cb8b4ca-93c7-5b1f-a884-f55cdaa5af43", "id": "CVE-2022-29885", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-29885 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d48604e7-1503-5130-8f56-baef31ee4521", "id": "CVE-2022-34305", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-34305 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9eb7acb1-0cdd-5348-aff5-fcdca201305e", "id": "CVE-2022-42252", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-42252 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7b4ab03b-038e-5602-8373-6affd3e4d4fa", "id": "CVE-2022-45143", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-45143 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:de161f2d-1352-508b-898b-2295cedfcca5", "id": "CVE-2023-24998", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-24998 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:62304165-75ad-51a7-a47c-53c34e5a3a6e", "id": "CVE-2023-28708", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-28708 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a9985186-7670-596b-b1a5-8bd17f064629", "id": "CVE-2023-41080", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-41080 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:492a413d-088b-5246-91f7-2bb22d450812", "id": "CVE-2023-42795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-42795 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:02f8d848-bfd9-5cda-8d04-b77e35d4801d", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2fa954f2-6433-54c0-aa0f-ad7385899141", "id": "CVE-2023-45648", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-45648 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ad2e22e2-d888-5559-bdd9-091c4c0dc878", "id": "CVE-2023-46589", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-46589 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:8ef8a667-09ee-54d5-8655-cf88a6d2bd68", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5fb62efa-e796-5bed-9f6b-39b737a58a56", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:1dc8ca42-85fa-53da-9ca0-a7c21127239d", "id": "CVE-2024-34750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-34750 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9a06aab4-092d-58fb-9f65-647c2e38fc9d", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:06959bb4-336d-5d15-92ac-ac3024308e5f", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:cc79b803-34a7-50a4-94d7-56679f78749e", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f9328a43-5b7e-5702-b2f5-4a5a264d8b42", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:500de669-ce2e-529a-8c8d-bfbf43d71233", "id": "CVE-2024-56337", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56337 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7e5768c8-683d-5c9a-a257-fb04a058d08f", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:bb0b6b1e-cb61-5cbb-9d5e-029b3dbece4f", "id": "CVE-2025-31650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31650 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:55b19f7e-6886-5230-abfe-ef205a588329", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:cfd0c221-037c-52d5-8f27-7261f88743e7", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a2bcb793-4311-55c3-8775-b59265cc7cb9", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c691cd71-3baa-5560-80db-8b9d348873c6", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:447f26a1-270d-5d2e-a40e-386c8c78eb20", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:bb704675-e882-50de-acb1-b707362b03c7", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:60d628bb-35c4-508d-9ab4-9e641b36a65a", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:bcb2c6fb-ed92-5ef1-b4b8-9f09ced52cd7", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:1f8874f3-9a4d-5352-a0a3-df0ccca867ea", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:044fd9f8-de06-5f3e-a4c1-217f8e173708", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:48c5d456-5459-5e25-bdc2-1c07a152479e", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4ecd43db-80b1-50f0-b599-4906d4e599bf", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:772bb373-b5b3-54a0-adcb-4e5f370448b3", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:dbe21066-ea5a-5e6b-b15d-39e78b9848de", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ab3ea0f9-d5a8-5c5a-84dd-3edaf0fe6dba", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:544e67a8-9b6a-51d8-a63f-eeb846c0b8da", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ba801d54-895c-54dd-9534-228794951a7a", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e29cd54d-8c76-53f1-b3b8-32a38140b30e", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c29c03e0-3bf0-5e3f-8d05-575e947f4f2d", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d6a52eb8-0a0c-56e5-baa8-2cce8de6bb36", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:97d7125b-53e5-55f5-b17f-ba2daff240ba", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:59f34d42-7a74-544d-933b-2dbecc947e35", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ea3e7ed2-1dfe-5e31-9e3c-7f0b8381e631", "id": "CVE-2026-41284", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41284 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:8033e213-1f75-5e44-87b0-9257cd56c150", "id": "CVE-2026-41293", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41293 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:db254fdd-d7fb-5075-9aaa-92ee4f28ed05", "id": "CVE-2026-42498", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42498 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ebce8c5a-7f4b-5b15-a00b-8f7f9b213213", "id": "CVE-2026-43512", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-43512 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:715972b6-1a9f-5de5-9e44-96dc2a7cc31b", "id": "CVE-2026-43513", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-43513 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b3a06a91-0912-5601-869b-dc8f48a7b5c7", "id": "CVE-2026-43514", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-43514 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:1018f8dd-17ae-5b9d-9e59-4fd9ff736f12", "id": "CVE-2026-43515", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-43515 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@9.0.46-tuxcare.7" } ] }