{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:22f3affc-a444-551a-a6fb-c5e673e37776", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-ssi", "version": "10.1.18-tuxcare.1", "purl": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2021aa30-5d07-5546-83e4-8dfff487bd0d", "id": "CVE-2024-23672", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23672 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f3b4ffbe-82a0-5e9b-83ec-f3d59eadce8b", "id": "CVE-2024-24549", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-24549 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:69a48343-3eae-56f8-a5c6-1e235b3f99de", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9052600f-857f-5885-a05d-e85b8a954077", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8dbe9868-ac6b-5fa1-9cb5-afd441bf1aba", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2ca3e48b-ca14-5011-836e-6941ca931da8", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:84d1b8d8-a7c9-55ab-b10a-da7882415e01", "id": "CVE-2024-54677", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-54677 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:923e0ab0-0c0b-5e61-9cff-b27bb8ace5df", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:386a5897-1cb4-52b2-bb2b-3a1266bfc4b1", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2c9e12d4-66d2-50dd-af5a-48c3bca65c6f", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5d1a5c47-7f44-5e57-b835-2e900ccce908", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:45dd486f-6abd-5dbc-9754-4231059d1c62", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ab58d637-73f1-5822-899e-5ac02c1c5785", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fa39bee5-5492-55d4-ab66-690563764ac6", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:956ddb72-d9bf-563a-ae5b-3a9ccfae9139", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ade2cf7e-3e93-500c-b59f-4fa4c8b16ae3", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:29cf7dff-b5be-5818-abf5-efdc52bdbf42", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b7d848d2-e563-5524-bb62-bb7045d1cd00", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6a179df3-5bb4-5ec0-8f57-aa8956f6f02d", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d2af58e9-1c42-5a64-abe7-f3ec0a0ef752", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:410bad29-99d7-5d99-a506-c4515cd96189", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d0e8e0d2-3b94-5e12-88cb-e6e19bfe69b8", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d69a158-68c3-5852-8ce9-6eaed8370278", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:35168159-586b-5519-ae22-b3876c384880", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:95c41de0-c367-5859-9943-a6f55b386dcb", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:989c9e8e-dfbe-55fc-97ab-3a70b2214cb8", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f70c6972-bcba-556b-99ec-5f9aa24db833", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:469d2b4c-dcaa-5246-9e6d-20f47d713ec3", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:948c6e79-850f-58cd-8aeb-76541c520e82", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4251bcc5-74cc-5406-b519-1b216d58b7c0", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:051958db-e76c-58df-b8ac-38c2852693f0", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:39de0062-ff05-5c14-bc7a-dd475d2247ae", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-ssi." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-ssi@10.1.18-tuxcare.1" } ] }