{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:2ac5373f-de0f-531b-8c72-632767d1ecc7", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-i18n-ru", "version": "9.0.90-tuxcare.2", "purl": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c9691a7c-1124-55ed-a34e-4730ca99b017", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:35c15be9-6b87-501e-9c09-9537823cb23f", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7fea437c-f4f9-5f3e-8655-7c25fca180c7", "id": "CVE-2020-13943", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2020-13943 does not affect version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru. Fix for CVE-202-13943 for this version has been already backported by the original developers, so brunch 9.0.90 is not vulnerable" }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f7fa7e3f-c893-5a0c-9fa3-af51718af9ca", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fa25bf39-bec6-5fd8-a867-c9d5f4e9311d", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6aadf56e-f507-504b-94f6-0e90e2da044e", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bf69960e-6ab9-55a8-8090-5eaa97ae974b", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2b54f0db-6272-577b-a5c3-a1c9dd4689dc", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:58977619-e371-514a-820b-60586c040682", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c69deac0-1329-5ee1-8a4e-4005758ff292", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b14cf85f-2c14-5600-9c30-7fd426cd57c1", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e30106a6-67fd-5ffb-89f0-2507c556ce5f", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4d5f0aae-512f-5da1-837f-cd839ca1f325", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:324b7ad7-2c62-5cc6-9b27-8a417e73adce", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:763f8372-ba7e-5cb9-8938-6af06865b2d9", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dbd86ef9-05bd-557f-898b-6e26f5efa302", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:390ff1f9-177a-5998-a5fa-d9a02e5efdba", "id": "CVE-2025-31651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31651 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:78fee334-4626-5cdb-9b95-46f01d47362d", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:50610d1a-a5ad-532e-9f44-f7ab4982e2c2", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d1c3168c-a994-52c5-9766-50bdd222d90e", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fa82ca41-d6ab-5d8d-9875-78cd6b288b36", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f73d2c07-604c-5e85-9198-65460d455d4b", "id": "CVE-2025-49125", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-49125 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:44c59fb9-083a-5f36-93f9-8e498bf646ea", "id": "CVE-2025-52434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52434 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4d7c7bbe-ef49-5f4b-a8fd-6d892ebc931d", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:302d1041-cd62-5d31-92bb-02a4d42fe2a4", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ef651a9b-45a8-5c45-9c49-f48cdc070b58", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3917776e-7974-5358-be42-9e87552b9b3f", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8e784d2c-0beb-50d1-9e11-bc8862a986be", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:035e949c-c22a-5ecb-a324-3b766b20be88", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f358c9c7-3d13-5c4a-bb9a-94f547463d6c", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a579a30e-7615-5696-ad4b-db7f4840c480", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bc964f45-cdcf-5fd6-a357-72b29599fba7", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:58ead624-a661-58e7-9aef-abe91e5e6be3", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:adb9a199-5cf1-5814-83e8-6d4822d90e08", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ec515205-6a84-5d3a-843d-7604e4822f2e", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b00ca3d1-abb3-5d72-9721-b8155ad2ed7c", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:648da64a-2806-5659-b739-9e6d9986908d", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:01f0a18f-3c3d-551d-861b-e5681e47b4ad", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4be1e73e-00ef-5a93-8b54-4defd78a1560", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 9.0.90-tuxcare.2 of org.apache.tomcat:tomcat-i18n-ru." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ru@9.0.90-tuxcare.2" } ] }