{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ff1227b7-e5c5-5bc9-bb03-9a998d1b97d0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-coyote-ffm", "version": "9.0.100-tuxcare.2", "purl": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7f2d4306-4d63-5230-8650-13e06623aa4d", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0dc52a02-ecc1-5116-8c4f-fe9435e2516d", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b29485e2-5315-548c-bfaf-4258c5bfa5fb", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2aa302c9-7a33-5926-abb2-e5ceb91e7ffe", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2a1105f5-8118-5027-adbd-a0c37e0936ce", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:08012700-d388-53ef-b16e-8b82e7fd6b92", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dd842e9c-328a-5dcc-b7c1-e56d594b6990", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5ef913b1-234f-50da-a133-f47f0a643d34", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2de1da3f-4284-55cc-ad86-48330f2f6c16", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:77f767a2-fc72-54b1-adb2-1bf04b3a325d", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9932c03e-6a54-5750-8801-0aee2b96cb4b", "id": "CVE-2024-52316", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-52316 affects version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8eb3202f-df22-52c7-bbd2-a0f7cb056a1a", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c4267b22-f6c3-5ea8-9fc1-c6174d87b620", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:51f668a5-1b71-554e-96fc-bd84dbe31696", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c7d7fa2d-ce55-5610-8951-699b9dfccd36", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:459eb947-7584-5ba3-a1ba-19f387d99710", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d3813ddf-e8bb-58db-8112-ff986b3e5117", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c0cb43d9-8ad6-5512-b22a-3eb1d31d09ac", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d369e35d-231e-59bd-93d4-4606bf15f3d4", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2476d9fd-f2e5-5f8f-8d08-5ee5b84df272", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a2d14862-7a14-58fe-98e8-f2ba35ba59e6", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:176b91a3-b282-53ff-a6c3-d4f3a7cf36b0", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:188c611a-8f69-5c7b-8faa-12312b20786c", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cf1dfc7a-4a92-5118-b20c-f2c99089ace7", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c99763f5-96cf-52cc-8a1d-a0c3b8b6bd0b", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1ca635b2-c1c1-5133-b337-7ee774e742d4", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e133e7e6-44a5-58ac-878d-7bf14cb4d13a", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b0c85611-f801-556a-a3a6-3dfe45606c32", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c275c853-e3ee-5bfe-a070-93c6b4946e1f", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b3b094d2-008f-5f82-9035-d837db7e32d2", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:adee2445-0caf-585a-9051-17e5db2034a7", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d85498ed-4986-5cb4-941a-a4d33e8c45b9", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:58f040ba-9d67-5903-a459-c1dce18c5781", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5338c5ed-da44-583b-bbdb-04b2a25eea20", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:640abab8-b928-5ace-b6e3-a6ecb74fac50", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9c9684b9-5e11-580b-aeed-1f58053b0cb3", "id": "CVE-2026-34500", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34500 affects version 9.0.100-tuxcare.2 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.2" } ] }