{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:df88ca41-1243-5149-9d98-74d14e0fc3b8", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-i18n-cs", "version": "9.0.90-tuxcare.6", "purl": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9233c5a3-721c-510a-8422-b0c7d9a3e288", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:ca353034-0783-5410-baae-7465ac20d3d9", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:9b0ca5b7-81e0-58e8-ac81-61ed3481edef", "id": "CVE-2020-13943", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2020-13943 does not affect version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs. Fix for CVE-202-13943 for this version has been already backported by the original developers, so brunch 9.0.90 is not vulnerable" }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:870fb4b4-f268-5b2f-93ad-59ee1e77d154", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b1f2c9ff-6a08-581b-9aa0-1d00a01a33c0", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:678475fe-bd1b-5363-a85f-ce2d48b03615", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b9659ab5-25c5-59ea-9fa6-af8bc7cdc30e", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:546d79ad-c2a1-5c5b-84be-337e4589a666", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:ea25daeb-5236-5257-96ee-7c00c2f3bfd7", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:0c7d358b-48f9-560e-a26d-5187e8d9ad78", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:303e50ca-0c44-57a1-9c75-ec5034fef81b", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:9cfb8de5-01e0-5825-a8c1-3307d8c79ac6", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:7870d067-5b48-5586-9df3-2cba4e9a5c85", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:06a28d30-3296-539d-90c1-d0203fbc827c", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:33d7d72d-a466-52af-81f3-e10a257e5c07", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:8be63d2f-6498-548e-b262-da63d62e6791", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:a664c6ca-d7b0-54ac-a5dc-f893b989a851", "id": "CVE-2025-31651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31651 affects version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:5845c76f-00a4-576e-a646-1f23acf54b30", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:25ae79c9-e40e-599e-a1a0-272b97c621d2", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:2453800f-c7fb-5692-a4d6-e76b406ea5c5", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:5ad397e3-9a68-553f-a9c7-d794160d83c8", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:8741bd59-c93e-52ff-a366-a4a097391bda", "id": "CVE-2025-49125", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-49125 affects version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:152cbac0-d77c-5452-b929-599a054b78fe", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:87c34c1b-18d1-58ba-8702-e341402edeed", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:a6e8817f-9f66-5729-8d15-cb8a214da6ce", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:34a35f9d-249d-5483-a54b-420bde1b5b64", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:30ad8f91-c335-59d0-8c06-7b65c7d0f5ec", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:dcb58e73-5ed8-5b33-94b3-1ba638080cdf", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:1b061673-a1e5-54bc-9734-5ab67a532e9e", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:2ae0b344-7288-5272-8509-6af3855d8402", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:284c0f0e-3011-5d9e-9259-b9e345c8e193", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b0ec426c-e5dd-5c51-910b-7b57ba6dfbcd", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:34d633e5-f23d-5e4f-b7ba-844f72be0002", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:08846ff2-3c6a-524a-a96c-00b12a582866", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:097b217e-2d31-5785-9dc2-daa950e2916a", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b0f55194-602f-5eb3-9fef-8f0902ef2273", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:f247440f-d9c8-5f22-b30f-5c247713a95e", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:bdf276a4-efa0-5937-bb29-3d762d00a609", "id": "CVE-2026-34483", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-34483 is fixed in version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:d9775f00-c093-56b5-bb09-171f47e770cb", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 9.0.90-tuxcare.6 of org.apache.tomcat:tomcat-i18n-cs." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-cs@9.0.90-tuxcare.6" } ] }