{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:31c4cbbd-944a-54cf-aed1-1a80587d01f7", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-dbcp", "version": "8.5.100-tuxcare.3", "purl": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5c32d88f-72a9-5bb0-b5d0-e8da2b6e56b6", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2e19e22d-bec3-5deb-bbdf-04a7be4eb412", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b56a8a09-be00-50bb-b616-d6350367935b", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:208e7e05-3713-543d-a007-81465bbc3ad0", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d2d2e24d-344a-5b5e-bd8a-fd76af6e827f", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3eebc573-a3d3-50f2-88cb-ab4223de0247", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d2b141dc-cc51-5659-8955-f2ad87a72884", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fcb429e8-c8f1-5ef1-8207-5ed6942b159c", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:99a9b012-f4d3-596b-bb76-0b8bd1f9c08b", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cd4831d4-8ed9-50d3-b4bd-d11b25fea0d4", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:41740acf-d79d-5c48-a0bb-9469c2c7a3b0", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bde87ee4-a910-597d-b738-d00d664bec97", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c3f22502-af94-5840-9a0d-47d3b25b2c83", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d5345862-7084-5938-8ad8-d1c36c0f5628", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e372bd48-fb6d-5a2c-9e41-25b66cc436a5", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:31026e6b-b979-5b95-a4d2-3a72f59422a9", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e7660422-b7e5-51b1-9f53-17ebdec1cdbb", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:72aaeff9-2e66-5aa1-b885-73f2d4712ec2", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f9f6f185-741e-54f2-87d0-33768c69f1cb", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f7be784f-2945-58ac-96c7-c82467053025", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8db5fad0-512a-5fd1-9e9b-222c9a85d420", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cddff737-ae67-5972-aea6-4a55b545223b", "id": "CVE-2018-8014", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8014 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5da588e9-c502-5294-a230-2e807c20eb73", "id": "CVE-2018-8034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8034 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e971e479-d242-50f4-9293-40130947f2cc", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b076f7f4-af71-5c7b-9510-70fe4682d4ec", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7d25c52d-ea5b-5379-b4f8-766fa3211489", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fff095bf-3653-5fd5-a182-2c83a49f014c", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-dbcp 8.5.100-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c808d937-a971-544c-8048-ac1ee323c645", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1afbf9c1-5a94-5e0b-8169-c25bc99d66d6", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bab7083d-aacb-5001-9c13-7634a84be76d", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:61d2d01b-86d0-5a1f-950b-5ee426fcfcfc", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:394b6a79-01a5-529d-85ce-badfdadff653", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:22da58a4-3d37-5983-84bb-151a41cfa258", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9f577c63-d088-5c63-bd86-d1b23b7dd3f1", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c908b9f6-b82c-539d-a649-01534c971010", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5a35b601-0f7a-5280-ad7d-b3a70c7f3d3e", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:79d18a38-5bbe-5aaf-aec0-906002f59bb5", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:07481ce2-7216-56e2-9098-e1713091e358", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4b81d63b-0eb6-5c7f-83d1-b093ec7f05c4", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ebc85437-7ff3-59a9-ab61-4e9c80d8c9f5", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:21fd5a7a-1da3-5645-8d99-b67484b05082", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d972fe82-2b1c-5f97-8ceb-6bb82675db18", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c2f708a6-78cf-5052-8a72-8078f8b23fe9", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:13fcdd69-4d20-5038-b5d2-972c2b5c48b2", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:000948af-98db-50a6-a861-ea2f15d6a903", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:44c10df6-0f1f-5c3c-b4eb-37da8115cb80", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:761dc71f-27a5-58c9-ae6c-1b40dbc3f832", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dce2adc4-fa8b-5791-be74-f956fa574930", "id": "CVE-2025-52434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52434 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6a174b5c-257e-5ea3-917b-35235d901661", "id": "CVE-2025-52520", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52520 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3dafec89-2145-54d0-b74f-b53fd9cd9bc1", "id": "CVE-2025-53506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-53506 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b3b5d3ab-e1b9-568e-8a06-f67ecfebbf76", "id": "CVE-2025-55668", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55668 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dfaf33c1-8b6d-546d-a55e-ea09bdf4c70c", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3232b9e7-02aa-5a39-9273-0c88b8a3fdd7", "id": "CVE-2025-55754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55754 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5f98af67-080b-5d73-837d-186a2852fcd0", "id": "CVE-2025-61795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-61795 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:442105e8-fc53-5eb2-bc12-89d458f799f6", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0fc35bae-21c1-5966-a024-d916bd6898a9", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ccd1a0c4-168d-5156-bada-9da57c44bff8", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ce7a815e-088e-5c11-beb9-39c337ca9495", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b3e73f44-eb8a-53b3-b217-ee6e14f7f4ec", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a02d81f9-e79a-59d1-ad67-1f5a7cebea0c", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.3" } ] }