{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f7607c86-4a36-5a28-8b3f-9b113f80dbfa", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-catalina-ant", "version": "9.0.75-tuxcare.3", "purl": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:0bc7217c-f586-5a16-bedc-2f30f430452e", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0efc173e-993b-5318-aa11-fc384c30ac85", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ffebcfe8-e0cd-540b-9b69-bdaf3534866d", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1b282d53-705a-51ff-be27-dccb6b967eff", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:01d4d810-073a-5022-994f-00ed5da9ec4a", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1952d3dc-eab7-503d-927a-72b926c1cb5f", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:50551f26-722c-5026-bfc9-c3ecf0392f01", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e9a313b6-7f0e-5348-ac3c-4b3da6c3693b", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:faa56f84-9be4-5e0e-bc98-94730c672b3f", "id": "CVE-2023-41080", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-41080 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ee02ba6c-c63f-53a7-8f66-75bf11ee6be3", "id": "CVE-2023-42794", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-42794 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:65719316-290e-54ca-8df3-ae5a25675c62", "id": "CVE-2023-42795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-42795 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:798afccf-846a-5c88-975a-7f1ec7d27d99", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ad5bc030-3470-5333-a7c0-59dbda864b68", "id": "CVE-2023-45648", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-45648 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e3bed202-62b5-5ad0-9e50-21ab723be61f", "id": "CVE-2023-46589", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-46589 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e3666cb4-7715-540c-adf8-13fa8901c89c", "id": "CVE-2024-23672", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23672 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9327dd55-8fb7-5fb1-8791-5187714946a0", "id": "CVE-2024-24549", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-24549 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2865304d-728d-5602-9e17-58ebf1054b0e", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d5a990b1-e678-5773-a8ed-6ff2a832d293", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:de7c27af-1f4d-575e-9675-ec198bf43d3f", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:61cf38e2-84de-52e8-a2c4-1505161cdf78", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b67e8357-c8ed-51dc-9087-f4076f319a71", "id": "CVE-2024-54677", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-54677 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:49d6a39c-3796-5ba5-8431-fa82439d9f36", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6cfd433a-85cc-5ab0-8db4-d72808508110", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2d56d43d-eef9-5924-8151-f9d415aaabb0", "id": "CVE-2025-31650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31650 affects version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:26317052-5cb5-5ebb-b72f-6454b87ba536", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7c1eea53-888e-5513-96be-5a050c3bc086", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c45fe097-a86d-59f3-96d9-43b7225d62ec", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ac0ea144-5c59-5b74-b3a8-bd540b928863", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ea6195ff-c669-50c3-bac8-849cec5d0d18", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9b4a2671-acf6-5851-adc6-d2f33926d321", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f1e23e29-79d2-541a-9efe-b29af0f75339", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cdfeb0c0-cd5d-5b30-bc96-41a10d25216c", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ecc57848-e0e6-5ee4-819d-1a37ede86a7b", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2e691da3-e6fb-5a79-905a-05e68e866691", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cfe2df94-f2a0-51da-9960-22fbf26038a3", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:987ab969-d615-5787-865d-312c8f4265d7", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:56f56959-8857-56a6-9bd6-80d5c7b6cce8", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5d65a975-f21a-5e41-bc13-bb5ac9aaf89e", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a777595e-4bdb-595c-bef4-44da65a92fad", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4e1cd5aa-cca6-5bff-8a2c-bd4d5e98ba35", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b94cc428-b124-5d2d-a546-612eb082e2b7", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c6eb4f6c-4e4c-546d-937a-f29b48d798d5", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:825b3168-f859-52f3-b261-14c584544799", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e0009f59-4528-5f78-b75b-26896cb14df5", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:34fce6bb-4108-5ca0-bd73-a33a674b4bc7", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 9.0.75-tuxcare.3 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.75-tuxcare.3" } ] }