{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:bd5d66c1-7b4b-5caa-aca0-eec25c04e41c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-juli", "version": "10.1.18-tuxcare.1", "purl": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5c226a05-864c-59cd-af11-a44834550b9b", "id": "CVE-2024-23672", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23672 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f699f1d6-53ff-5a53-bfba-ec4d2ce1e31f", "id": "CVE-2024-24549", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-24549 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9ffec054-6c9c-5f53-a195-d504ddfb3597", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b67157e0-1424-5894-8544-411f815a035d", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ba639e5a-1687-5c0c-bf3d-9051039e2c89", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:26f8442d-7a79-5064-819d-e4c32078ecf5", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cddae1ab-10a9-58d3-baaa-c4cf512e121f", "id": "CVE-2024-54677", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-54677 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:46eb2a0d-cf5a-5cae-953e-68844b6cba55", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b136be8c-4f71-5df0-a059-da64cd4ac0d4", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db903ec3-3400-56ba-b4a8-15157bd4745c", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0535b423-9a62-5f61-af2b-f736359437cf", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a1ae0c3c-c591-5131-bc9f-a60230cabfe0", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:067570b5-934a-5bc4-aa5a-5f20a7d015de", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1e560d8f-eabf-59ac-93d8-e61f36d6df77", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3954848b-a154-539c-9d68-a76022b77019", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6d3c25b6-b2b4-5597-b945-41a861f2b848", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4e975ef6-4a0d-59d8-b15f-a42642fb8a07", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9b5eccaa-4fa6-5951-8c5a-ebd249496709", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f7a111d0-713f-5f32-9dd4-8b12714f2e64", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:18368f6b-08ba-5080-9a38-8020f1f82c79", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e88c28c4-9b50-59cf-bd87-3510a1232c6d", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d4db014c-608f-5ff3-a168-f906d56d1ed6", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:886424e0-9d1a-577b-95ba-9516886f25c8", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e91d1db-f5c1-503a-a89f-27db30617271", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f149a945-34ec-52ad-8c3d-41011c1d1eb7", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7a7c5eb8-0ec7-53f9-9491-1b1ed6b13d37", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:618a9350-9742-58b2-9295-b0445d758f5e", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dc5100f9-2fcb-59a1-b5e8-e2cd836330b6", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e588d981-8c85-584d-b0e0-b57d54d6823d", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:185ca452-6e79-5208-bd11-83d01e9c10c7", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a0402db2-113e-5b7b-8776-b5aaf72b8b4c", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bacac3f9-0cf9-56c4-b8a3-19e1279e480e", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.1" } ] }