{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:22ba7892-ad0d-5a78-b3d3-c565d4178a72", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-i18n-cs", "version": "9.0.90-tuxcare.3", "purl": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:afc62715-4817-5a6e-8c6a-4a7076a13234", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:77a77592-bb1a-5e4f-8ed2-6441683956ee", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7968fc6a-7257-5ade-a241-0a14996629de", "id": "CVE-2020-13943", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2020-13943 does not affect version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs. Fix for CVE-202-13943 for this version has been already backported by the original developers, so brunch 9.0.90 is not vulnerable" }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b24ac0c6-677e-59f2-9111-4e22a716b36a", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:046a26b5-7f4f-57a1-9721-2689e945f790", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e696d8d7-9bff-5b95-a03b-e655a53dc263", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:151815d6-546e-51c9-b22b-1d510002ca28", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1cd6aad6-412b-50d3-bc93-c33087efcca8", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ecb7b47f-091a-5ffd-9993-4b0d02036289", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6fa4bd13-9258-5f1b-a107-a707252eaf2d", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2f6ab263-9852-5dfe-b32b-dd4d697103d8", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a3e2983a-59cc-55bc-8d31-ffcdb1b0a470", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b161130f-efc8-5696-bdde-2788dbb7b9a7", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:94515b50-04a5-510a-9f13-9b78a0e98e9b", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:82ca1098-27dd-5dea-a7cf-51cc1461f6be", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9f97f093-3456-518f-9d96-c27d9c1e9594", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8dbdd51b-da1e-5027-8c27-35e3537c7916", "id": "CVE-2025-31651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31651 affects version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6c792ec2-5037-5ba8-a9a5-52a6586e0660", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0c1a57e7-6dae-5365-8f0d-28a4cd017ddc", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:26493ea9-b9cd-57f9-8ca1-d221551617d7", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1249c5bc-5b85-58fd-a149-1ab04090fe4a", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0057b5b1-5a4a-5076-8b52-ee9e8cea325c", "id": "CVE-2025-49125", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-49125 affects version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cda9bf7a-0f48-550d-9873-c35322e0c65d", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f65a344e-80c1-56a9-b0c7-20ee602f7762", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d4d70d63-9575-535f-a49b-177114154726", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7c7afb34-6303-5f90-95e3-de871a9421cd", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:65017a1c-7023-5158-90de-11ccf07c9e5f", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:da070f7c-1be6-53c3-a437-6548a0aa94f4", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b5619cc3-7e54-5613-ad2f-9feb1176920d", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:92fee0ff-63cd-5412-8043-452f46d428a7", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:49469dd6-c475-51f3-b215-aa2f619f7bec", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:12d1acd5-7a6f-5675-8132-a2677e783b14", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8f6a4bf7-f9d8-57e3-975f-cbe06ef9c387", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4b83b534-dc33-5403-864e-03dad4830753", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e5c98cf0-13d3-5d6b-a850-c1ff01afcb1b", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e001c561-c811-50cb-8e23-289e98a3edc0", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5b41b1a0-b672-5a60-af05-211642fb51c2", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8eea8c0c-4917-566f-afe7-987f200a4199", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3a932cd1-e6fd-57b8-8450-15edf2a417ba", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 9.0.90-tuxcare.3 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.3" } ] }