{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d598c62b-f098-564d-8c8c-675521b1a3c3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-catalina-ant", "version": "9.0.50-tuxcare.2", "purl": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b35dba0a-db38-5ee5-9d96-4f6cbb9eeff4", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3d095ad4-5437-5d0f-b781-e7417e78ed1d", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e8561e75-8ec5-59e6-aea7-ad6fe8c54d95", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1843e0d1-aefa-59e9-bc7d-bc1e8b0d6020", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8af3c34b-9795-5e5b-9648-13db35c5af36", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4105088c-f881-564d-b1fa-46c94a8cd327", "id": "CVE-2021-42340", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-42340 is fixed in version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a1056609-6566-523e-8c14-bf390807f442", "id": "CVE-2021-43980", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43980 is fixed in version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:140e9b09-07ee-5cb7-bf72-74c7af43d1f8", "id": "CVE-2022-23181", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-23181 is fixed in version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c8b8e804-4616-5366-aaed-02caab4c6027", "id": "CVE-2022-29885", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-29885 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f0fa99b5-c52d-57ea-a4bf-d2088a1a96de", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e8c268e3-4c4b-5f1b-847b-14e9e8aeae69", "id": "CVE-2022-42252", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-42252 is fixed in version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3d9ea3dd-1c54-5a3d-9758-2a0f1a076e87", "id": "CVE-2022-45143", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-45143 is fixed in version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:38ca88de-3c84-5c3b-b25b-89042b9d075f", "id": "CVE-2023-24998", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-24998 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4e28c43d-fb1a-5b90-88d6-e3226a0f2f46", "id": "CVE-2023-28708", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-28708 is fixed in version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6d191618-e25f-5719-9a6d-5f04406286c2", "id": "CVE-2023-41080", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-41080 is fixed in version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7181e1e5-3a27-5108-972e-832104c5f64c", "id": "CVE-2023-42795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-42795 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a2182f08-27d5-59aa-8726-10345be2110f", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5b1e1f0c-9f52-57eb-8080-3dcb2008d04f", "id": "CVE-2023-45648", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-45648 is fixed in version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:38c19c88-3fcc-5bfc-a01c-b6f7a1b045a0", "id": "CVE-2023-46589", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-46589 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b9f8c49-7a4f-587f-ad37-45bd0230cf48", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8b76939c-4cab-5b9b-8acc-232f84d00f14", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9290da3e-c8ae-5a4f-9a73-00eff6578ca1", "id": "CVE-2024-34750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-34750 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e6145129-9873-59b7-8c1d-bdd274cde83a", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:691263e4-0343-5256-a49b-6f5119c6f035", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:046fb251-6c93-5bef-845e-310a8239564c", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:df5b8522-52b8-5f03-a887-5c295684281f", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b1dac861-f895-539c-ba75-5895542ddd2d", "id": "CVE-2024-56337", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56337 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:59af4623-13cd-58dd-b624-ab0370008ef4", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a9324d56-0698-54b8-8219-a4bb4d44beac", "id": "CVE-2025-31650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31650 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4e5d8762-3114-5c98-aa08-4e7076f8def0", "id": "CVE-2025-31651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31651 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2864c5c0-fe38-546a-aba6-1f432c96a67f", "id": "CVE-2025-46701", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-46701 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c356028a-1b6c-5e7d-bb37-3a8b0142749e", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8160de3f-a1f1-53f6-a32e-21c7d79e0942", "id": "CVE-2025-48989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48989 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eb199b51-a720-5650-9c80-46b7cd1f1236", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0d4047f7-602a-577d-8b2a-305e58a7e8a2", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:21c99561-f321-5b44-a490-9a1c70995b10", "id": "CVE-2025-52434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52434 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eb277c39-48b8-5409-a775-1ee9d49f6e80", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4da5505e-fe47-5ffe-9427-fbf91dceb007", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3e647691-4563-5830-a3a7-db5fcce3808c", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1b525882-c7ac-5806-a2fb-c549d7f95eb3", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b6d59e20-679b-5926-adf9-0bf65c021738", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a5026992-bd7a-52c7-b5b3-646f56d5a475", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e6dc52a1-b66e-5438-bdc5-ad5b62d68f63", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3f0ea57f-669f-51ff-99c8-f88d1b7931c1", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b346e87b-05fd-5033-8858-2946110e8381", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7f4f3908-0d4b-5113-9e22-837a35b351c0", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:970b1b80-4bc6-5333-87ec-f49063f699c6", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0df29403-9bb1-5956-aaf6-90d80504b456", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9d63fa6d-5dcf-583a-b320-8f75326b920e", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1bdc2d76-4aff-507b-850c-56b55947ee21", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 9.0.50-tuxcare.2 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.50-tuxcare.2" } ] }