{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e2628657-2d5d-585d-8514-a8d87def8e7b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-jni", "version": "10.1.18-tuxcare.1", "purl": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e5a43304-7c01-5e1e-bcb5-9c839ea802c2", "id": "CVE-2024-23672", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23672 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:659c71d5-5b81-5711-9bea-0f1fdebe1bd8", "id": "CVE-2024-24549", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-24549 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:662c3def-5d37-52f1-abb1-22b3bbfdd76f", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d7086e2b-86a3-581c-829c-3cc5d43e939b", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4a92e21-b9cf-561b-8159-323435d729e4", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9bd51afc-fe11-552b-8a7d-b96143f19e7b", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:206d2f82-0428-52f3-97be-264b7cc30798", "id": "CVE-2024-54677", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-54677 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d227cc2-ef8a-5e45-bd4d-06209778497f", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f09c9798-73da-5967-9c4f-09300a8f46e3", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4fccbc4e-4efc-5816-9951-59ce9f0611c9", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:faa01fe0-88ba-5552-9180-5c676e9f63be", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c1dd5b5a-ac10-57d6-bbfe-f5d8e680b5fa", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a572d3f3-cfc5-5196-90b2-6b5d2be792d1", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aba004a9-2883-5ed9-91c7-5151851977e0", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:911c4892-4018-55d2-ba22-88948a356689", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:17d28381-5b7a-5c5d-92e0-20161a6d75cd", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af39eade-02cf-59d6-8110-d80147e3e5a9", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c68a505e-14d3-5ba6-87a4-f17216d7bf52", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:53d53f56-5473-5307-a866-3d27607abca6", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:383cd6e6-8f80-5cae-82d3-4e9e9b11101c", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b8fc5286-5eb5-5e99-81ae-2ca0c3a7cd74", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:37ec7d05-37f3-558c-a71f-2beaf379c4ec", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3f7eaa22-ad0e-52b2-9f67-e788cf0eb061", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:61e338db-64de-51bc-a88e-203529b18460", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:506de801-d747-514c-84ff-07abc17e905b", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:95bbdda1-eb15-575f-a41e-51c6a8080623", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:98736bcf-ae1e-5727-aa08-28025925fee7", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f8a93569-6c5c-5647-a0e7-e546e9a24527", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:832b193e-9c15-5a32-a3d6-24a10191342e", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7ef0a08f-946b-5867-b157-4e58e38dec2f", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:75084521-56d3-5fbd-85dc-92daa18afb93", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da3a32fb-1b0f-504b-82e2-337b4b54cab9", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.1" } ] }