{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:726f60fb-6b37-51a1-ab4c-a58715b8a458", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-i18n-cs", "version": "9.0.90-tuxcare.1", "purl": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3e214d0b-e687-5c2d-b1ca-e49dc6cf7d04", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7864d443-07f7-57f0-8852-e0e8b3f17751", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6d12a55d-ae32-5228-9305-ac868ac090d8", "id": "CVE-2020-13943", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2020-13943 does not affect version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs. Fix for CVE-202-13943 for this version has been already backported by the original developers, so brunch 9.0.90 is not vulnerable" }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3d2322d8-6b57-5780-9c75-9b1288aff5c8", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c89b6cc2-562d-5c06-85bb-786a47fa6102", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2ae6b7b4-66df-5cee-bc27-cf424a4633e2", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b3506fc0-7eaa-5e3e-a257-51e12e8172ac", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:039a61ec-35a2-5492-812a-039f4908b26c", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62702cce-5a75-52ad-aa17-da2c9ed586f2", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dad7e407-8d88-5f83-98e2-ab20affd83fc", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:97f93748-78ed-57c0-adca-59675e286a4c", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ccf85c87-9fe6-5992-90cc-58f35c409fe6", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:894ee5de-2176-514a-8e97-abda8a532a31", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:34527b10-4a8f-5019-b7fe-aa114c5267cc", "id": "CVE-2024-56337", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56337 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:23a14000-a3a8-5f5d-ac77-3d1afe97480d", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:725b9336-9424-50ea-9fad-ac3d03bedb8a", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d3e41400-8202-5d15-8dc9-7323073360d6", "id": "CVE-2025-31651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31651 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b0076dc6-a866-52bd-85c0-6181e90cac5e", "id": "CVE-2025-46701", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-46701 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:789c42da-5691-5579-9685-88318f62d84b", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cbf69ac2-d912-5d98-8535-1bc28275f7bd", "id": "CVE-2025-48989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48989 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d4cd4541-59f4-5239-bce4-8e421ce9a6e9", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:45a566b2-753a-5d7e-9ab1-58e896b2d8f2", "id": "CVE-2025-49125", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-49125 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:31442a99-efe7-5c02-9611-899f538dbe8a", "id": "CVE-2025-52434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52434 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a35bf4f5-7a78-5028-a18c-ac3e5f594ac3", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d5b89bd-42f0-57e0-84d2-f56517449ae0", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8533077f-bea8-56b9-aa70-cd19959f7187", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:50f02ad8-60fe-59f6-9528-50cc106ac58c", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:58c598b2-5bea-54f9-ae70-c09d2e1fbe46", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b74f1f3e-1321-5a5a-aea8-f2f868c4a089", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c556421d-3f7a-5b83-8032-4669e63ea71f", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:23660b0a-566a-57e3-b949-5fbde3dc9b81", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ed705cf2-16a5-5a6a-8f71-8011469d54db", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b7fd6fb3-27b8-5f33-8d38-598b6da4027a", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8e74218c-0b7f-59d0-b561-fe8bfe0dffd5", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:29d26d37-7f97-5dc1-9d94-ead07a9278f3", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2dc1133b-fc67-59c3-b851-efaa82de9f2c", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e8778977-b7ac-5101-ad9b-5ac2a1b92cd5", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3e711da3-2bc1-5971-9815-b808435ecc5a", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7224347a-1446-59b2-8e2c-2620189d6cd0", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.1" } ] }