{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f971d2fd-21d5-5a1c-85c0-5772f299ed31", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-coyote-ffm", "version": "9.0.100-tuxcare.1", "purl": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6d40c06a-c7e0-556a-8b21-caf0ac84b265", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b84ec3e6-17e4-58dd-abd7-8376015a5be4", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f752203c-f42d-5db5-8ee7-0ea8d4c1631c", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:622382f2-40b4-5dfa-a9c8-33d12f59e73c", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e1089025-e1f1-51a1-a42c-3fc8ebd433a7", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7fc445bc-d212-5db2-8689-7983de29acf6", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3db8dd05-2869-584e-8ba3-f1e97848201f", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f90fb852-46a0-5a5e-b428-dbecc6f0ec5c", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:26eacc30-13dd-5df8-8e50-8204c3db3632", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2aebbba6-0772-5872-89b8-a06b5abdfed8", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:df3b4b92-4b8f-5dab-9742-7431276a6ed0", "id": "CVE-2024-52316", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-52316 affects version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a803b2e9-9e98-592b-87b1-a89bc1090c9d", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2e6c8828-4cc8-5df3-84cf-2212ab968d1d", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7477bbe4-5710-5d37-b7de-a4a3d31d24d0", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4696e2cd-349f-5239-afb6-0e9ccc5256e0", "id": "CVE-2025-48988", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48988 affects version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7ca22d97-5fff-554c-93f8-67af86a6813a", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:02e98532-34e1-5321-afc1-2f25901130a9", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9dd0b659-d90a-5563-bafc-928d1586f2bc", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f5a4e173-7d90-58e4-9743-19a85740c5b2", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c4467706-f306-59a8-91a9-218136cabad0", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ee75e38b-281d-58a3-b32d-f5e0b3ab520c", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2961338-973f-50d4-b0b5-5a83fe8afe03", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a0a5015a-87bd-5d6b-be5c-8c31d71f37eb", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4fbacc8d-cb5a-52b1-98f9-0aeca894b391", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:11cb90d6-0d19-521a-9ef5-428392d55929", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62e822de-4067-5d50-bf11-9399ca1c9ed6", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ba6e364-7708-5e4d-b1ea-2dcfbac0195c", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:74a04374-077f-53f0-923b-e05b60bfa200", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7621eb45-8a3f-5e6e-9d5a-40ddb3de2df7", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d70d62fe-4f7b-5ba2-b6b8-0283598ff437", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:44fb2bc9-f876-5f00-87df-c414cfc000ce", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8a816a09-2d3e-55d4-bb72-9be405a3d964", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:229c11e1-f691-528f-ad50-7ae9c26c7f1a", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dde786d7-d7be-5655-a5f4-10fe1908e785", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c3ceeb64-7807-5adc-be63-219613c1441b", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:70ddb566-234b-5548-a718-811c1ea6d41a", "id": "CVE-2026-34500", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34500 affects version 9.0.100-tuxcare.1 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.1" } ] }