{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5cbf2961-e63f-5c8d-9f4c-c506f351f8fe", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-i18n-es", "version": "9.0.87-tuxcare.3", "purl": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:11727cfb-2908-546c-b8cd-8dc48f0eaa7d", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:08bc37ae-a03c-528e-862f-6a7ea06516c9", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d4f02f71-9b5b-5ab6-aa7a-ff3d07c6ff04", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4d8159fa-9762-5512-a634-a8f3dea095e4", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8362a359-7607-5fa1-bc6f-bc7959586511", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d7b66b2e-3010-5a81-a88f-948c7959459d", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b771388c-5ae0-5f6b-b6da-6730b09d226e", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a0e3cba7-64a2-58a6-adc1-4987952c8db3", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9ed3d0c2-8230-575f-90c5-113c5c47aae1", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bd572e7a-d221-5ab7-83a4-24ca175e8284", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2bdc54e7-1038-5fad-ac07-804e4eed242d", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:062a4689-25da-537e-b883-841be3dc34b0", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ddf9b3d5-6f48-572c-a5cb-100d86a74d34", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a6ba0274-63af-5e71-9ac7-a1d0cc249a74", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d4992993-534b-51f3-88ab-f189a0346853", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aaace140-e987-5313-8825-882f768f07f6", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:14c34dc0-9481-58dd-ba1d-1f60b33870b0", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:19e1dbc5-1db9-5711-8b21-80e1e99b75a9", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:65ace8a3-9eae-5fb4-a325-cb27342d1691", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5d806982-dc0a-56ad-ac16-9c2287e5dc2d", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f952d9dd-23c2-5eff-a30a-4199bdf1baa3", "id": "CVE-2025-48988", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48988 affects version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7930d3ec-f30c-5c41-bf2b-0fd030c4ce74", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dddcd53f-3421-5f7c-824c-fbd351cc2c7a", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3456d74b-f7ea-5137-8943-3837004dd5d3", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6cd22c09-1e41-51ea-948d-fcb1a606db3c", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:51b5c68c-7c64-52d7-8ad8-2efebe1ad72c", "id": "CVE-2025-52520", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52520 affects version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ae9f938c-12dd-5d4c-8423-4f67cb191c9b", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:89c0a553-881c-5be5-87df-d1673ebf5455", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7583b042-2184-58ca-82b6-e133178b19f0", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e383ec7d-9c90-5148-8699-84780ce53ef9", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3969446f-4dc4-58f1-89c0-18d7b91c6f21", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5f407cac-41da-50dd-8456-6170c417d168", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c1172f69-7f10-51b4-8ff8-99d6b9a1eda3", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6d6f7646-13e1-5575-a2ae-deb03073d636", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:319211c4-9bfa-51e2-b3e8-1398e7a7c29e", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d397321c-be5f-5566-b0fd-d51ae7e9e2eb", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1e65c54d-0cb3-548c-9fe5-0b36d2047b5a", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a4792301-20ae-56ee-a419-478f61f0a448", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:09f699a4-cefe-5e3f-b147-e19e8adba3cd", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:95f50779-f5ba-5dee-8657-f07dccbe5bf5", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ff47f11e-26aa-5a4d-b825-51fa6fa94d9a", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 9.0.87-tuxcare.3 of org.apache.tomcat:tomcat-i18n-es." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-es@9.0.87-tuxcare.3" } ] }