{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:53750473-3029-5c75-9e7f-4a65672f0f00", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-coyote-ffm", "version": "9.0.100-tuxcare.4", "purl": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:02d3a879-1824-5275-b222-d11808d3235e", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:048d65ba-3dfd-5521-ac45-dbc97b37e959", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:49bf31ff-bda2-54d3-8ef8-b0708b8ce863", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:74530937-75e5-5daa-8077-1dacd2020bdd", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1e7631ec-3c37-585d-b9b8-0b9637a1924d", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:233a74b9-9def-527c-ad93-49df2f455c74", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6a21fcfa-96c6-541f-b56e-6b939bc13e5a", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d62a9615-d755-55e4-976d-761279861469", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9cb08bc7-c469-538d-b441-5845d719d0ef", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:330869e8-c731-57b4-b0c0-010ffbdb7242", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:280b8d80-3910-5bc1-8e5a-f4489c918e9e", "id": "CVE-2024-52316", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-52316 affects version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e132bbae-ca81-5bf4-9fe4-7ee93775c4eb", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:dd46795e-a9a0-5326-8480-bf046442efeb", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cf360e83-356a-5b95-9f54-72cf6d7b52a6", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d70734c1-25db-54a7-848b-65e2291a4ca1", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:22b65232-2703-59d1-84f3-cc70c5d9a0ec", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6b8d9152-e295-56f0-bd49-9f83a14366d5", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:866563b2-4261-5a9f-a4cd-d3028b929a23", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e44cb9e1-d87d-505d-b9b3-7e7e3afabedb", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:122849a6-6863-5e98-b51b-4675c42011a0", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c3412d9b-340d-5b56-b513-5ea332fd907d", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:13c9778f-1b8c-561f-9342-a3eac2c00316", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:45b8b4cf-debe-5449-8236-df6233689ec1", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:179461e7-b5c0-5ec8-a068-2c0c66aefc7a", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4c1efb2c-b584-5e23-8f27-3edbe2cbd3c4", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0b6db216-5bed-5f4e-89a8-689719032ac9", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4c724414-fc46-5e17-b742-3bcacde6652e", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:741d7ac0-7e24-55d2-93eb-f472a8c78972", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3c939c0d-e0da-5c18-a7e0-abd70ad8db0d", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:dbd3c4d3-97a8-5810-9af1-c23d7224aa24", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fc2639e4-16aa-5e9c-b9e4-453721ced4ef", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:27ae7f10-4071-50ee-a1f8-84f7d46aa0cd", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:85426bae-65d6-509d-a68f-9dfb043e29e6", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3d4f7b74-1acf-5ff5-8394-b8e906ad1f7b", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8889bfcf-cf8c-5edf-a598-85fc810d1181", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:57716d32-94ea-5886-8535-58a4931d76e4", "id": "CVE-2026-34500", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34500 affects version 9.0.100-tuxcare.4 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.4" } ] }