{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:fbb212b1-7185-5668-b336-0a2ba77aedf1", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-jni", "version": "10.1.18-tuxcare.3", "purl": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:65189931-5b4c-506e-969d-5211c4a5c011", "id": "CVE-2024-23672", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23672 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cc3680d5-6128-556b-8e2a-e19525c00d9e", "id": "CVE-2024-24549", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-24549 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5aba5c6d-b467-5f1e-84f6-b754d06dd00f", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8e9a14af-c35e-5bbf-bcac-f117970df4f2", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dcc662d9-2007-5ac0-99f4-66aa9dda1e22", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d5f6ff4f-d2a8-57cd-98d2-6a255394b62c", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:06cbdb3c-5a7e-5c5d-be4d-c22f7e44761a", "id": "CVE-2024-54677", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-54677 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0eec5a5a-a59c-558d-a67b-5e9c95bb728f", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ca10a2e1-37ef-52de-8a13-308fcbaf5f44", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2422aa7e-55c0-5ee5-9fea-f71b4f83d2b4", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3638cb2e-4803-5ba9-b78c-a4798d29ee03", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f5d8edf5-e3f0-5b9b-a0ab-10779df50b14", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4c914564-4a8f-58c9-836c-165ecb90d32a", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e35b0d58-1604-579a-9bb5-d2f233f2d820", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ad85dc23-9d61-558b-a04c-3b3a4166907b", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a176ed7b-b9b6-5dab-b108-a02ac6c1cdc3", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:144a9f73-b132-588b-ad00-be325bb27dfa", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3c426f8e-acd0-51ed-bcd1-45de7b809c06", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8bfbed3d-84bc-5d51-8146-101fe2f6445b", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e2269ecb-b0aa-59ec-82c6-87bb69a087a7", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:de78182a-7893-514f-991d-ffec2e7df6b0", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:728c83ac-12a0-52bc-a34f-11f8027c3e66", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:947c72ce-c121-555b-bb77-14723c4f0c20", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d4275d59-9ca6-5533-b3ae-d8b99fd28209", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e2df7718-e8b9-51c5-bc6a-105c45793d6f", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:86d496f2-665d-5a4e-bffa-51ad7b655639", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:24d5de45-ef7a-540e-a57c-a95d91562f04", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2db1e943-3d6c-542d-bddc-4cc2d2b96320", "id": "CVE-2026-29145", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29145 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1acef74e-5cab-593f-9181-043113ae4416", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:82741237-828a-5bbe-bd8a-125d067d04d9", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2032cd7c-2dea-5b1b-862a-3fc5fc428ef7", "id": "CVE-2026-34483", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-34483 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e956b54f-1e06-5ab7-8946-c86dd64799a5", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-jni." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jni@10.1.18-tuxcare.3" } ] }