{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a2c65b2d-c059-53c2-82fd-6fd4ddbe2015", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-i18n-ja", "version": "9.0.90-tuxcare.1", "purl": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6d8de496-df22-5a30-9615-810362586858", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0762a8c2-9fa6-50ad-9554-d42f41a2bd9a", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a90f8bfd-3ce9-50bd-9885-5e2877ea3731", "id": "CVE-2020-13943", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2020-13943 does not affect version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja. Fix for CVE-202-13943 for this version has been already backported by the original developers, so brunch 9.0.90 is not vulnerable" }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:90be3501-54d4-57b6-b83f-ae3b7b049475", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3068144f-b392-50c0-86f2-00e1e394e790", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:63600faf-423f-587c-833b-95e3555a8e16", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:544543a3-2a66-5844-ac0f-239fe56cd157", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6cd53936-7579-5895-9a71-879519823b15", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:583d3692-ef5f-594f-82f6-cb88ce56e2d8", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2ced65b7-0906-5d1e-938c-4a92fcdf68dd", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e9544df5-5b08-565d-b256-fd9466099eb5", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:22c49bd7-0e18-5cfd-bcb2-0886419d0a21", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:16e30fd9-995a-5c53-a205-d8ffc2f18794", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d2c228f4-29c2-5d44-bdea-2fefce2409e0", "id": "CVE-2024-56337", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56337 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:43a18108-1596-5a88-900c-26b7fe77178c", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:12358ee3-545b-5315-bb97-f18c80686103", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eb230a7f-80b3-5456-b4e3-7ab9bcfff565", "id": "CVE-2025-31651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31651 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:27fd83bd-a793-5514-87b4-2beafd097186", "id": "CVE-2025-46701", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-46701 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f9835ef9-ed4c-564d-b337-0453ff422c7b", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b118cbb4-ee25-528a-91cd-6ecd27648268", "id": "CVE-2025-48989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48989 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f88f0b14-8b8d-5be7-8c65-0833b5708a18", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:18173123-9df3-5716-8b66-692bc0f2c283", "id": "CVE-2025-49125", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-49125 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0a00148b-df71-5ab2-a33e-07efa942014b", "id": "CVE-2025-52434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52434 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e73d75d-7778-5af7-89a8-ffa0dcfa6fb0", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:41432ea3-33cf-5217-9c24-2112d4ec4516", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6dcd1919-5f7b-5857-ab92-82ef27f285c0", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e7e3bbf4-80da-5796-ba35-72148ea76f7c", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1780a14b-4841-5fda-9cca-adf5e5a4516f", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:08a906ba-45ca-5a06-9021-810188d222ba", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b09ffedb-8ebb-57a9-99a0-e9cc8e05c5da", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e534516a-5e9a-5fd2-a007-dc72d19de087", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d1e76e8a-fb89-54c5-83b3-0c958a9dba4b", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:73ab7228-8cad-5895-8d83-fa92e14f9a62", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2ccacc0-5320-53aa-9657-442317871d48", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:48fda689-a91c-568d-aea9-b77d24b31494", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:498d8fb5-9aed-53d1-adf2-97b8baff0ddc", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:54d94dfd-9d0e-5819-9977-8c70054e96e6", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:87b11b48-938a-50fd-9e41-5d9518045506", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3c9c4b70-4b08-5bcf-a1b3-45a9f848ee7c", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 9.0.90-tuxcare.1 of org.apache.tomcat:tomcat-i18n-ja." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ja@9.0.90-tuxcare.1" } ] }