{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b7d9950b-ffea-589a-94f5-f90b67ffa523", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-jaspic-api", "version": "8.5.100-tuxcare.4", "purl": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a317b875-bb2d-57f7-9930-103556655e5a", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:37822baf-ee33-5aaa-bbc0-0bffe699ba5e", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7bf7cf8a-77ac-593d-b897-9a8a028002a4", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1a5843bd-150f-5f66-b790-67ed3954a456", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d64d64c5-64ff-5b4f-b262-c8e0dd181541", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c7d335c9-8532-5236-a852-db47c1c6d641", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3a47df70-8969-52f4-bed5-7d26370ea375", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4ff3443e-b5a2-58c2-8863-08d5167bf1d3", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:01e1fdf5-8dba-5f45-81d8-1b65742ced3d", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6f8f3ecd-f68e-54e1-a51a-4ff53c94b8f5", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e6cb6b18-bbeb-591b-9452-0d41eabbf579", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1b122457-9855-5ec8-ad05-d635285cdc75", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f4a5b33b-5a4c-50e3-8139-394e95d4c1e2", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f7f99aad-4636-56eb-b537-0b8d8f8df624", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f07d7735-e872-5835-b1d6-ba829d50fba0", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8fb9cf80-5509-587e-9af1-01c3f5e61c38", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4a44ac61-62ab-5f78-8e1e-19c7dd36a6c8", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c4420123-62ba-5a1d-8d8b-9020ffdf8d11", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e510411b-b9f0-5782-8972-e54f0da65f54", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2be6966b-7ca4-5fe1-96eb-943a1d3ab47e", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3b38b6a7-c597-5f7a-adc1-fcff13b5f8f1", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f7fbbf8a-afb7-5150-a4f2-344459b11f89", "id": "CVE-2018-8014", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8014 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ccc45816-c719-59c1-b641-da85fcd4f72d", "id": "CVE-2018-8034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8034 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:71a1dff5-0cfe-537a-aa22-c0e30e468037", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:05dae7e8-f225-5fa9-b648-e11ba4e010c3", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cf06eb60-f6f0-533b-aecc-c439e27767ba", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:71c04692-1eab-58ee-8990-7172ea9039eb", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-jaspic-api 8.5.100-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:96c089eb-03da-5458-8fcd-b970665b23c7", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8b27296e-4fba-5e95-b819-32275df06948", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:29d6da77-2223-58c5-8c1a-139b6fed1dd4", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2545d48c-5e84-512b-a299-1d4181aace51", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1d0e6cd6-d471-5291-a98d-1c846c7bb23f", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:88b769a4-bdd3-57f9-b1ad-2431f26cc503", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d28ce124-68bc-5ce2-b884-fed59079e053", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:70d1a77a-12b4-5235-b904-7e091d4a5054", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1cbb0dac-5cb7-5b27-bc3a-fcfb041a2467", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2fc62499-ae14-55ca-8306-4d0fb39f8e1d", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c6d63c68-372e-5c18-99c4-7968ab9c88a4", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5ef35876-8365-54e2-8f8e-fe495dd545d2", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9686edbd-393c-5483-9c04-920f6cd840e1", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e9aea20c-3728-5146-935e-9c224d267ddf", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:544ede9a-c731-5a96-a7f8-18db9ba41b8a", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1b3bc901-2f9a-5b99-8a72-5d700c215dca", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5b435d51-cd8b-5d28-b31f-294c1ee5dc9c", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f23a14cd-14b8-5760-a52f-c4bc89f9e710", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5cf73827-19bc-568b-ba25-d23ad19377c1", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:89879d18-d757-5689-ab74-2032f51119e1", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:58de2249-45ee-5a01-981d-18caa8682428", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8fedade8-880b-5b42-88bb-71981c9f0aa6", "id": "CVE-2025-52520", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52520 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d44b8449-d1a2-5778-a69f-2cc4c2e48b9a", "id": "CVE-2025-53506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-53506 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:88393236-4113-52dd-a1fc-adf73b4786aa", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:99430314-75ce-565d-8fab-60e6945b5424", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:346a3fa3-9958-5c7b-a835-8fe9ee7a7929", "id": "CVE-2025-55754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55754 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0bebc177-9962-51ee-bfcd-bed99bc64a38", "id": "CVE-2025-61795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-61795 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2cb9890d-cadc-5510-998e-10cc050d9665", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e9783575-6248-542e-b2a3-030b329d70c9", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:623c5dee-560b-5eb3-a831-959ea1697e8b", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b7fa832b-55f8-5316-b188-5fa93bb6b6f5", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:88c62b2a-f204-530b-8d26-681078a395b1", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2a29de6e-06e4-5bee-ba27-9539231e5c40", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.4" } ] }