{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e3e7e398-c920-501e-820a-284889b525f3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-i18n-zh-CN", "version": "9.0.90-tuxcare.4", "purl": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a853c141-d710-5033-8699-9169520ff197", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a90b9989-a015-5fc3-8ae0-0d3a0bff732b", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:84447fac-42c5-53c8-813b-48645620f94a", "id": "CVE-2020-13943", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2020-13943 does not affect version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN. Fix for CVE-202-13943 for this version has been already backported by the original developers, so brunch 9.0.90 is not vulnerable" }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ce46fa1b-5d6d-5e42-868f-9fe39d429580", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3706d049-fbc4-5160-9724-8bced17440d8", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:af5de3ec-db74-5880-9f32-17ee06ec8d0e", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:638fd119-5215-560f-9974-ad8bb553a2e8", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3795724a-983e-55c1-9687-70bcc274140b", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:027313db-0006-5b88-9a86-a177978c7162", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f9735a91-75bf-5527-b5e8-2314f2d46f5e", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:29ac194c-2adf-5005-9301-4e6288408024", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2ef3187d-1298-55e2-a522-2f705e4c2e66", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f4a09a31-2f56-5c11-8a92-bc7eb68c5704", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:910b6fe0-17ec-5940-88e4-54126b0fc17c", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:04754ec0-2593-5210-bdac-f555e32264d6", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e6ca292f-cac1-5999-802a-ae9289bad0cb", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8f68e443-f6dc-5f4c-96b1-f2516a5be77f", "id": "CVE-2025-31651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31651 affects version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c53308ab-7f18-5a0e-a426-065941140523", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3c94ec73-64ea-5878-bc50-843b4bcb252e", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4a621ae2-b8c3-53d8-84ce-737b72084aa3", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:66d26efb-e528-55d4-a21d-ba8c65598d3a", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:069bd147-e1aa-584f-b520-aebd05e1ede9", "id": "CVE-2025-49125", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-49125 affects version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8225fa5d-e91e-54c7-be25-0b089447a3e7", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b00df4d2-3243-5d70-ba16-58686be5e181", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:dc80a048-7e9e-53a9-a376-874f85661ac1", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:478c8ffc-82fb-5dca-b76b-a8feb4e5d822", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c6d0e93a-1cfe-5248-a8e1-446638110a4f", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a7bb0281-f37e-59c7-8de7-b00fad6237d0", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:06671e14-eeec-5d2c-b9d4-432184d30d5f", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:91d2b170-adee-5491-98e0-e26bd01c0d48", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d13adfe2-4f3c-5a31-9e15-c98c60034ecf", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3db54c9e-818f-5d45-94e7-8369e7d77726", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e3021f57-c55a-5e0e-88cd-a973939361bb", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:60bc3202-f515-56e8-b5d9-92c41d3ff61a", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8aecb6c7-b382-5f20-aa5b-2b2288f708f8", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5adbf151-742e-5996-8ac7-e3fef751a789", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c660213d-ae54-53b0-a60d-d6c4beda3cfd", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8e62b668-d487-5623-8a2a-67a57c77bc10", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:dba85924-f8dd-5cf6-b271-dd2b35e0788b", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 9.0.90-tuxcare.4 of org.apache.tomcat:tomcat-i18n-zh-CN." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-zh-CN@9.0.90-tuxcare.4" } ] }