{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:fdc86e82-ca16-5c51-a9cf-3da0f32b7b8d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-i18n-ko", "version": "9.0.90-tuxcare.5", "purl": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d5b72d18-68b7-5145-ab29-129fbb90f5d7", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:97a6132e-3573-5529-843e-5ac5b89aa3c7", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5196ed7c-1225-5610-a1b4-e4a86667692c", "id": "CVE-2020-13943", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2020-13943 does not affect version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko. Fix for CVE-202-13943 for this version has been already backported by the original developers, so brunch 9.0.90 is not vulnerable" }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fa48648f-4d9f-545e-af9d-b7c96242047c", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:73bb0eee-8ecf-54bb-9bed-700f16c9a6ce", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c477821d-d435-53dc-ae44-8503dddf0264", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ad4c6527-132e-5a51-ade4-5742d175757f", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2e298dc6-6ff8-5f00-9983-db944e3a08a0", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:30a5491c-cd2c-5060-80b1-3292cfae7029", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8edacf2f-d217-50c4-8993-fea263290983", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3868496b-ecb2-5c9d-8d58-b0b83024f82a", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6c47d869-ded0-573e-9431-fc369361b468", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3445ebc7-33f5-5664-a1fe-c17ea1b66d46", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:be9beb86-b320-5b8d-8172-b3160c032f4b", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a4f6f480-06d0-5556-81fe-cd0fbf3708de", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fa4aa767-1ddf-5cce-9847-1e6b55ee87c3", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5bf55568-e85a-56d5-a443-7836e256d622", "id": "CVE-2025-31651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31651 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a3429dea-4879-5f0d-8951-f8025a2f7906", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c8089165-571c-5979-afd5-c8407317b261", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:734f9c18-ba91-50b1-b44a-4156c35f837d", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ed564986-5bc2-54ab-9356-44f206cad4f5", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e0bbd7eb-46db-5d0f-8dac-707aed87984f", "id": "CVE-2025-49125", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-49125 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7087173b-860a-5684-9101-0e11788d5abe", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4485ee5d-0263-565f-b0ed-230a181a28fb", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6630e0c4-0782-525a-af58-f19032076a74", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:39a430c6-b313-51ae-a4ad-f75569bcc095", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fd009ab1-51f9-5c7c-98ee-210fbb28e1ae", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c189584c-f482-58c7-8afe-610188cbbbe0", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:892f92f8-0b1e-5060-8d22-3965499b8900", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b09c9080-c970-56fa-9660-ab86a78fd45f", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:74228912-3b44-5229-9a62-737d20f6ee73", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5632967b-37b8-51c6-8eaa-f60a984130ad", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:545ec918-af9c-5cc5-b7c2-abf2a327101a", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0c38587d-eed0-506f-a7af-62c45515ec96", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bafafab6-5dd4-59b3-a8ee-2582528ab6d9", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1f6069c6-e03d-5731-b415-9d0a3003d266", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5d85b388-61d2-55d7-930f-f25b7a3fff1a", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:184a8cf2-5477-5b86-9baf-7fca09c3e6ed", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d50041a4-21b7-5d95-846a-6e426ed04b20", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 9.0.90-tuxcare.5 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.5" } ] }