{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b89e8fae-98b2-5905-9fd4-6747a4049ad5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-dbcp", "version": "10.1.18-tuxcare.1", "purl": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:177c8ba0-9eac-580e-a06f-9ac6e0eeb86b", "id": "CVE-2024-23672", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23672 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fe4964b9-8e3a-5d05-a32a-9bd19c0728f0", "id": "CVE-2024-24549", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-24549 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9d085f38-0891-5d7d-86fb-ebf630315b58", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9fb56f62-7326-5f25-94d2-8dfba7a4d593", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5f1ed5de-e2c2-5ba9-8856-0017982afd21", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2bbe10c8-bc2a-56b9-99df-d5625c9aba1d", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:037b56a1-626e-5932-ad81-6b26d79672ae", "id": "CVE-2024-54677", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-54677 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:81c2cf7c-37cf-548d-ac0f-63c9a50c0867", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:612b5532-5c78-56fc-b5a3-b3ad37cf5fac", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9980a1d4-0159-5dde-9f82-3b3102ebbb02", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a4b43ae4-deae-55cd-b954-ff396e3508a2", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:710c244b-0a3a-52ce-9911-c43e81e3b64d", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e2fd8cb3-84a6-5bf2-9210-83654ad64966", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b3f0006f-3a9a-5e11-9658-a289e792eaa9", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e46651fe-55e4-5470-8f98-abff5052ab58", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5edeabc8-0c9d-537a-8553-fcca861d6cfc", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b9bb0a82-9d45-56b8-a4df-26e8065ab232", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d9a25026-b434-59f3-baab-c26e0efee776", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:64a0f1b9-965d-5f8c-864f-4d3e76133355", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fef456b5-0e02-5b2d-9e0d-b3c378784b09", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d1cb2a3d-e31f-5b2d-ba6e-33f34c5889fe", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:49237481-f831-5492-9e4c-5d9f1ec9ed16", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:42a8368d-b769-5c8f-aba3-0d5d9ce637c3", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3fe6f0bd-887a-5401-b17e-b9cbf4964046", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d792e961-3d0e-524f-9a41-573fb7d91022", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cf0a57c2-9beb-556a-b129-af0535b16dad", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c141853f-c6b7-5108-85e3-dd7a90760f4e", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c8d3a4bf-8275-5674-ab71-606404a66e29", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:82bdc6d6-a4b1-53a3-b882-81485e024848", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3fa6199d-407f-5815-947e-1800b591515c", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8092b5cb-0a01-50c8-ad40-6804ee090366", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2f6a3ea4-d873-5ea0-8f3a-bfbed84dff48", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@10.1.18-tuxcare.1" } ] }