{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:82416865-cd41-5075-852d-7b372f1e3cea", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-juli", "version": "10.1.18-tuxcare.2", "purl": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:85213238-b425-5ef7-b923-376f0f05cf04", "id": "CVE-2024-23672", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23672 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:df6dd317-b7f6-57ae-824b-89fac1ba5f8c", "id": "CVE-2024-24549", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-24549 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8b2c3768-e9b2-5fcf-9e83-08bc069e6cf1", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1adc7fa9-e4c6-5faf-bb08-db6c854230f1", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c427089f-feff-5cf5-83b8-3161b8218db3", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b2c50e75-57a2-59c6-ba94-81986936762f", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:69a15015-2f30-5669-bc26-805c4dafcadf", "id": "CVE-2024-54677", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-54677 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c396c73f-e8fb-5cac-84c4-8065ad48eeb4", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2afdf8ba-1a14-583e-8791-f90d235560b9", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5b7cbced-e2e0-5e65-adc2-9614e39b0168", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2cad8fb6-f144-5019-8144-727b082e2b1a", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:25b33b7b-7462-541e-972a-aa7181258766", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ddd00675-0cee-512c-a415-bfb85ebea0e9", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7e930cf1-8ab5-5547-a5b4-88def489028e", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fdded11b-75d2-50f8-a8a7-6c29639264a1", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:63ebb0de-33e6-5efa-bd9d-df90e1ca3287", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e4dd2995-512a-56c8-b35c-c652c6abeb89", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:12495683-1c93-5ec8-badc-ee6cbc21de15", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5f99d1fe-1c8f-59ae-b39b-eb767ee2f4d6", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:af7f4a96-31d1-5387-a1d0-5ee867afdcd6", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4b70fcd4-51a5-5efe-90d4-281f76a3d359", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:85ff2f5e-5fce-5838-8885-8426105f413d", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5a6ddfbc-c21f-5e10-a8e8-55ed37bee4d0", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6383eaf0-741e-5b73-8376-50460cbcbbae", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b35c8f8e-aba8-5631-8560-f4ff8a95fc50", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9d1dc8b8-e768-520b-b6b5-b7a51d753b70", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:45c39635-9fb7-5c05-9118-f95c3d69e971", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2623bdd8-87e9-54e4-98a9-83b32faa0d73", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f553f69e-7882-5ddd-b9fb-ce0e23cb5256", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:24420289-e61b-50d4-8f85-6758d1271ad1", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cc3ce160-0c41-5d4b-91f5-af112ee1d57f", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d676ecb7-f98a-507d-bc99-9ba98721f065", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.2" } ] }