{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e32db04f-ec41-5b2b-b995-48b8cb2f6247", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-jni", "version": "10.1.18-tuxcare.2", "purl": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5af25139-97b3-505f-abdd-50029302e0d1", "id": "CVE-2024-23672", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23672 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5b784aae-77f4-5c70-ade2-18d80b0dc800", "id": "CVE-2024-24549", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-24549 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d8ed7a73-b7b1-5f14-ab5a-bc204b7ec719", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:736eda16-643b-5017-b74d-b6cc6d72b0b5", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:74029d98-8e1d-51d0-837c-d79e88aced9f", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:258d6c98-45cc-5b36-b213-4e2bf3e328b3", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:52d307bc-dfd3-578e-b3bd-b5b34fcf2361", "id": "CVE-2024-54677", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-54677 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:15e7e5a9-2d24-5a99-b5fe-c771964105e0", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c2a83683-2ea8-5ae8-9910-70eecc368155", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0cf85b71-7f68-5ad2-a2c6-00fdc66c355e", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:81033063-a436-5c34-8b16-61439cfdb83e", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ab97d548-1659-5af0-8b81-2bf1f3058403", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2308589b-a555-59f6-be13-9e0df791c665", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e55fd9bd-c74d-5a0b-b8b1-d66a8e8c3b30", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ea5a55e5-8ba7-557e-9b8d-2f77fdd4e64c", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4f2e5505-4081-5a89-9bfa-c1c5a90d7eb6", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5041e28f-a7bc-504e-947f-2abfa974fc0f", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1262f477-abf3-5119-a760-bdc8bd3cf4a9", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:32ef7b45-4cec-5f73-a092-5c4339e56b31", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:951ccc4d-9441-5467-9834-10e38dd2c082", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4b808c66-0a24-577d-a9f2-60421528321f", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a1ca3c9f-536c-5fa2-aaeb-51f253c82864", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9cd0678f-40d7-5614-9cdd-54776caa7c05", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:42d3e259-1c94-5a9e-99dc-b3ba9ed02456", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a9964f6d-ebf3-580b-91cb-84cb68ed389a", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:212849f6-a8bb-5526-a7a3-d5155afb0f4c", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e7a1ab2f-4765-5dfb-80f3-889da91cd164", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c741820b-66a7-53b8-91e6-32c1cda5dfce", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c12d6908-6741-5ce1-a431-c5124735ad4b", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7ac29d1e-e8e1-57ab-88eb-c86468221f07", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2697904e-5ba3-5bcf-b349-b9748f8779e5", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8cad23dd-d10e-5b67-a365-1b9c5e356796", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.2" } ] }