{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:69e98842-10f3-58dc-ab0d-e0948eb82151", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-storeconfig", "version": "9.0.75-tuxcare.1", "purl": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:1833d682-c82d-54cb-83a9-6b0328261fd8", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:57f1fa03-3051-5488-9ce7-7544c901a84f", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5175b598-a2b5-5488-905f-ae7b92cf698f", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:158ccc0e-4d70-5610-a474-09ff79b4f380", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9741f38a-adf0-5d6f-9415-ae59f877a1d2", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e9b694da-297c-59a6-93a9-1eb5a8bf7274", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bb94fe14-5d31-531d-8ef2-fc4d9ef43058", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5bb69db3-97b4-553c-8891-1934e547e912", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:307a0029-9a00-5103-9755-eb72b5a17081", "id": "CVE-2023-41080", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-41080 is fixed in version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d9b354be-13c9-5ef4-bbae-9ba7aff1d04a", "id": "CVE-2023-42794", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-42794 is fixed in version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:78e9edbb-1c3c-50c0-bedf-fb27a733db17", "id": "CVE-2023-42795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-42795 is fixed in version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:270dc22b-b6a2-55a0-befa-bd3c6f768e3a", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cd36e073-d6ac-507a-be2e-898df7f9615c", "id": "CVE-2023-45648", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-45648 is fixed in version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7a72bf27-ab73-5600-bb42-d38fc9436a74", "id": "CVE-2023-46589", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-46589 is fixed in version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6cebdc25-097f-5dba-bad4-262909a51aca", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e5d220b1-18d5-537d-b5fc-99b853e58087", "id": "CVE-2024-24549", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-24549 is fixed in version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e16faeff-048e-51a9-acfd-54cbecf1ed08", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5b22cade-57be-5dde-a212-74ade7a26e70", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:128c2825-28fc-5d8d-bef6-de17f003d5a7", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ea7216b6-7e6e-59f3-917b-3879c13a80f7", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e1590f5c-d761-5e61-9f91-16804ccbabcd", "id": "CVE-2024-54677", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-54677 is fixed in version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d5cfe3dc-6a54-53a8-8c80-72090797632a", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a063b9b3-093c-5592-9515-16f3e56254e4", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b839cf7e-642f-547c-8c51-e23fc2016281", "id": "CVE-2025-31650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31650 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e7e0f022-89e6-52e3-bc94-cdaecf6bc652", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f8823b36-7a48-55ce-b89d-87db4bb72d6b", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c98e849d-92a9-5614-ba29-4acbf0b18b6e", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8752cc64-799f-5cf0-bc7c-0ae91452c0d8", "id": "CVE-2025-48989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48989 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a1eaeb5c-5c85-5ab4-8a25-1ba2c038910b", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0183c66c-14f4-5f7d-8c66-5508357ca1a2", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae34b6a0-b94e-5353-b765-31b785447a63", "id": "CVE-2025-52434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52434 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b19f4b28-97fd-5906-87f4-719e6e82c7d2", "id": "CVE-2025-52520", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52520 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:572487dd-03a6-56a8-9b04-bf08a55e66ff", "id": "CVE-2025-53506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-53506 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:736b2f6b-6d2a-5443-80b2-e3c79a6e7e75", "id": "CVE-2025-55668", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55668 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6ff42218-c8e1-5c03-b675-4a2b3ba24d4c", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:47f34df1-3828-5ecb-b40a-2f7f5f95fbd1", "id": "CVE-2025-55754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55754 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b1e64c1e-b291-5d2c-a6f6-c9d9e5d82213", "id": "CVE-2025-61795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-61795 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8ebd0278-0955-5392-9188-46817f556857", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ee3e5ae4-3e4d-53dd-abdf-d4c838111e20", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:be4c6401-0105-573d-ba97-f0f7a51a0e85", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c04a9217-3083-5b66-9895-4e9d57755fd0", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:adec242e-9364-5b29-8691-d6829ed09ca7", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:32fee6c6-3e5c-5b0b-a6a7-6d0c3b867159", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b6f3bc19-c7ae-5ac9-8991-0f0a89f0e85e", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d4354fde-8e85-5b28-a199-b6e56d844049", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 9.0.75-tuxcare.1 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.75-tuxcare.1" } ] }