{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:951c76b2-4513-500e-a47d-ed5fda65a748", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-catalina-ant", "version": "9.0.90-tuxcare.5", "purl": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:097f86c8-828b-5505-b6d6-a2283a080e0f", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ff2f2d53-b806-5d49-979a-6d49c87cb5f3", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:68b987d5-fe1d-5d3b-b856-293c92fe3330", "id": "CVE-2020-13943", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2020-13943 does not affect version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant. Fix for CVE-202-13943 for this version has been already backported by the original developers, so brunch 9.0.90 is not vulnerable" }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b02c0391-dfb3-5978-99cf-bb13d61b74d3", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f4a9a3fe-5f94-5bae-9dc6-8818ebe76fb3", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ffaaeafe-0301-5f4d-8d8a-6f300f0d9cfc", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:42b398e5-1d6f-5f4e-b417-8753f41f8e22", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:633a827b-bede-54c9-9516-1ea55b325d9f", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8c2a9eb8-0472-5a41-838e-b90c9b45ee13", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b4855eba-4977-5618-a8e2-3ac4f1ea7d03", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2b9900c4-5a77-5da3-985d-e886f2f94759", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9d5ff343-c1ad-57db-a214-323e3869d05d", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1535106d-5159-5450-b9c4-9b91ae1ad874", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ce2bed3f-c506-5bfb-8767-1de56496c5a1", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fe8ed6c6-f182-5d1f-9f64-9d51b6019dfe", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4fe9f9a1-6155-5da2-9579-3fc2a087b078", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e9f69fe2-5481-5125-a45a-9392426c4333", "id": "CVE-2025-31651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31651 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a8b096c9-3096-5901-8f2e-d6c659a911f4", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0f734e68-0add-580a-bc8f-44e069bd0eee", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1e15241d-0cd7-563c-b620-94420d25b441", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a7669348-6fa8-5f93-b2d5-c9f732b6e1c8", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:99c59f36-2176-50dc-8906-1a0786741c69", "id": "CVE-2025-49125", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-49125 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bccae069-898a-5c27-a0c1-3544039ca6b6", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:af5f4680-42fb-5b57-891f-b63fdd067f8d", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fe1bc6ed-8cec-51ec-8209-c1045d65fdb2", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e3708979-4386-52bc-8e62-a0f1e8eabc66", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:cae9b302-da4c-55be-a49f-8359fc8e010f", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1f7238b8-f664-5354-bc05-8e31110f9fbc", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:19bff1c4-7130-5199-bd3d-c71563bd2a95", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ececd728-5b93-5848-a8ea-d610fb72171d", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:afa29b99-f9dc-55c2-bfd7-7254b433e0ba", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2f89d95a-4688-5ad6-bcf5-2052277a1d82", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:85650818-e853-5113-9452-56c53b25d751", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:62606b59-37ff-54e0-925e-3c0f73c1826b", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b0b107e2-097a-5814-879c-ce4c4c87547b", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9a5bcd64-343d-5937-aa7d-e48043d6ad94", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2f5271e3-7656-56a4-994f-ef6db2b718cb", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0d71e6a7-01fe-58a1-b0a6-fd6e6ceff362", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:11107058-2ecd-509c-8074-f499c0a8af7a", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-catalina-ant." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ant@9.0.90-tuxcare.5" } ] }