{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8f65d7ed-ffdd-5b20-a669-81bfc0109efa", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-i18n-es", "version": "9.0.87-tuxcare.1", "purl": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3408db06-7a7c-58fb-918e-05ee8d2ece92", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ce42c7bf-cb16-5e06-badb-64cb5fa5a177", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:37c7584a-1e11-55d9-99af-366206649d91", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eaeb97a5-99d5-5583-b126-082e0373b8f1", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7e8cc1e0-43e6-54e3-8e3e-84d8af6ae17c", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b35eeea0-e112-5713-a124-bb4d0d600e68", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b5e0863-0420-5380-b9d6-c3e03dfc5f3b", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9999c49a-62b0-5926-9717-2f0d5bf21d38", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e9462066-ff23-5179-9e2e-0c2ec084ab5c", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d1a9d46-48b6-5943-be7f-1b6fdc483803", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f5f942ff-4b92-5d19-a290-2f8245830012", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6bab1b3f-522c-52d3-b147-6428bc769f31", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0b82f43e-58b8-5b5f-a10c-94effae3be58", "id": "CVE-2024-50379", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-50379 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:06f52b49-291d-52c1-8f88-885abb335807", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:08986262-b2bf-5976-87d2-768eb658e722", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ff535cca-3906-5470-96fa-87a3c821b6e6", "id": "CVE-2024-56337", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56337 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d29727b2-fbbf-564e-89d4-2ce772b277dd", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d6a090c2-5263-5899-ad1e-2ac1fb3e0cd8", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:034285d7-7fa6-5959-8cb8-798477ffec7d", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3a550c71-b898-5314-9d6a-99ffab94d802", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4ca14403-be34-58a8-9502-87ac41a6aac0", "id": "CVE-2025-48988", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48988 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b0172f0-dab6-5137-941c-aa33f2790785", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a3dd9aa4-e038-55de-bc50-466cb02e5d4e", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9a61ff36-a78e-5727-85ea-4511cf42d4f2", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2611d1d7-231e-5cb2-890c-5606f04d8dd6", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:70acdd92-a939-5824-9d14-0a3de5861c9c", "id": "CVE-2025-52520", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52520 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:61f794a6-7ce2-555f-aa3c-2a016ceaa019", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ceea93fd-ace9-5aee-990d-14e0ceace395", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c41e66eb-47aa-5d87-9e9a-0f27297dbe31", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae359908-ee5d-5931-8279-3d2c81d95233", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a3efb60e-ebbf-5c5b-85de-f00f453d70de", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:adadf7c9-8198-52fd-a1b0-5243f9ba1a47", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:605e2867-e54a-57de-af63-098542d50c13", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c3bc5275-1a7a-56d7-893d-a7c7153fa4e6", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b36eb88a-2150-5e03-8b77-8c9d3c965674", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:72a63152-e9ef-5408-b3e4-9ce7236a4f83", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b1bd5c7f-ca88-54d6-b884-355d61c904b2", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0ec5363b-ff0d-57df-b958-a43258fe7db3", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:34f60475-697b-543b-94ae-e3e435e436d8", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4221c50-92fd-52db-a058-eb7cea683a88", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5538c4e6-5deb-53ca-bd03-b6efa15b9cff", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 9.0.87-tuxcare.1 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.1" } ] }