{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:08a327c0-eb92-5bea-919d-e66478606d47", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-i18n-ko", "version": "9.0.90-tuxcare.2", "purl": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:330dc0e3-5db3-5499-a811-f10dad09a06f", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:827d4f45-9cd7-5019-832f-ab5ac209750d", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a6fe4c37-d58e-5871-bb06-9695ba031e8b", "id": "CVE-2020-13943", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2020-13943 does not affect version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko. Fix for CVE-202-13943 for this version has been already backported by the original developers, so brunch 9.0.90 is not vulnerable" }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cf2eada7-521f-5395-883d-65fc5eac0882", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6164fef0-950a-5fca-aa78-7c1458c957b0", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5941dccb-a3a1-53e7-b39d-8632c70ae6e0", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:42eb6188-cb79-5c29-963c-eae93c1d1816", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:910ea87a-beef-58e1-b1be-daf019a9b3f1", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:779464ba-e94b-5c79-b9ee-2247c63166b8", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8cbea458-ce09-59d9-96eb-330ac4a7a3c6", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4d060e9d-f35c-5a13-a068-24731d799ac5", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c3c77218-8408-547f-aba0-80bec74867de", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:384d8e44-b7af-5240-86ea-ad9455875b34", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:12341398-34cc-5aea-8bfb-0c1ae3dd6f8b", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6e29d65f-b86d-5c70-a338-aa6ee56041b6", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cb0c9e21-b55d-5918-8e09-e577e5753998", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b69e6698-2592-5374-a1e3-68ed1885cb4a", "id": "CVE-2025-31651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31651 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a3d948bf-6d95-5eb9-b966-8725260414b4", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:101d0893-7ecb-5785-9615-729b93c4e9d5", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8fda0f65-6518-5357-bf6b-0627172439fd", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f8fc0fa3-11ef-538f-851b-9885a0bca50b", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9e45342d-b6a4-55c8-aa2e-a70761db4b8b", "id": "CVE-2025-49125", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-49125 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ff60291a-1c17-51b5-9ff9-aa34be4a83c3", "id": "CVE-2025-52434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52434 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:34069485-4dbf-587b-9869-bbd6daa25221", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f896575c-6fde-5f9b-b96c-de3a7e8ad4e7", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eeb63f6b-61e4-56dd-af8d-23b35d42cb12", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ca594189-d27f-5263-9145-7c372232d94d", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c181f73f-7e45-5e5b-ba5e-341588baebcb", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:391dbb32-e641-567e-abdc-37e51fdb530a", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7073be97-689b-5d58-a5c7-e68947d9f56b", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d1a71414-a749-5996-85fe-dec288fe9af4", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c9b310dc-43ab-5f44-989e-3ed7d3935420", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:32b38378-b19a-5f2e-8f24-2317883e9f2f", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0843f0c8-cd94-5d3b-90b6-361140067974", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:54417c5c-ec12-520d-9443-9b1882d7f215", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c3911424-2928-5829-a4cb-6334f2081e9c", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f865b204-2744-5757-a517-aad7c14d60b3", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a185686b-f73f-518a-a07b-5cef309f9590", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:49fb8513-7459-5641-a651-f3e831521c8d", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.2" } ] }