{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:35178d9a-56e3-5a41-9eb1-8a07cc9298fb", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-storeconfig", "version": "10.1.18-tuxcare.2", "purl": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5e8f4b5d-ae3a-5005-be72-9e576fbada47", "id": "CVE-2024-23672", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23672 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:09a0d8f0-0027-5eae-9ba4-23acbbed66d8", "id": "CVE-2024-24549", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-24549 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:411a7a64-e045-5206-892c-0b02a4ffe49e", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5a966cbb-d72b-5ccd-89cc-8b8ef6512b76", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cc44f096-1971-5692-b65e-c8f1dce6e601", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a8ee8548-beed-5996-beef-90825032b128", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ee0ad564-4aa1-5861-80d1-03ac489f1074", "id": "CVE-2024-54677", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-54677 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:81e15553-ec23-5357-a7cd-498e7f41e431", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:abe93617-93ae-596f-ab4a-5340f0e9c0e6", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:75855e54-9416-568a-b7fa-ee242ea29b14", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e98a33aa-3113-518d-b730-9081404da102", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:25aaef78-6332-5592-bc7a-bbe025f066e3", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5cc5a949-c716-5e80-a68c-8f888fa0a2df", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a198f1d6-e6a7-5b01-ba7e-1ab7718e8d31", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ed66fee7-405e-5c59-8e6d-7ee184e5b39d", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:76003dac-0bfb-5f3c-933a-7ee907e707ef", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c334d8e3-0385-5627-9c95-0dac5962123c", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3f69b674-9091-5fbe-bdbb-1f21b0937d13", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0df92396-ef58-5d1e-8b2a-624eaf6ef9b6", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:28443d8a-d3ef-5c5d-83d0-b5433fb6430d", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:83dfa512-3a22-5175-b5c7-5dde30bda5f0", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0ee64c9a-17d3-5135-b988-6127d3f73aff", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:916af2ed-2769-5f66-a8e1-73a872c5ab69", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:60ea016d-a3b5-5f19-9741-637f132fcd18", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3248b176-b401-59b0-a54d-05d49984263e", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a9adabdd-5333-552d-9b98-5c35c85b5579", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aff5d226-f304-527e-b847-842eb45f9dac", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5189255e-d5d5-5208-a3cb-9f5f4e4d95da", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aa44e66a-d926-58b2-b17d-0dfa76cd5cc6", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dcf0291f-bd61-5c9a-84e6-92831a01088c", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8b54ed34-5ed2-5cb4-b5e1-ab05a7d8e77d", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2e81d0aa-b57c-5961-9bc6-41458ffb5e2e", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@10.1.18-tuxcare.2" } ] }