{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3d9be9e1-5508-5e1f-a1e7-e59506ab0eff", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-tribes", "version": "10.1.18-tuxcare.1", "purl": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5e76fc68-9bf6-5680-8130-9d52fdd1495f", "id": "CVE-2024-23672", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23672 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a9843260-ee65-5988-ba40-0cfbdc680811", "id": "CVE-2024-24549", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-24549 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1dd56c82-1e01-5c83-b6c9-7ea2a0486809", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f4ef8dca-9a62-5b86-b763-23f475729131", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4ea2c979-446e-56cf-bbfa-b6a607d3efe7", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5ea5e63f-b748-5d17-8828-0ba3f35edc4c", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e7ae56ee-8c2f-56e8-997d-c241685be368", "id": "CVE-2024-54677", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-54677 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:df185a46-f761-511d-9212-05af09104483", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae9bf78b-b6b6-51cb-8208-25c16fc5d138", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6c203730-ef6e-588f-9383-e93fb012ad74", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:625fda2d-3d03-5efb-9a7a-5e3622ef7c66", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b7b06d29-26f9-5cde-ab0b-c26548d5a679", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:02f1019d-0479-5992-ad95-6cc5281f41ac", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:313b8ff0-0a4e-544c-84df-7b66b14365d0", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f195632d-c1ab-5d41-b83c-bf07fd4c2c27", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:41b2b335-45a2-5850-a1a6-a58482e542dd", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fde82238-9fbe-5d5a-af13-23913a9ee60f", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1cdf9b81-8e86-5d85-a3c5-046ea93e5b4c", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96526c31-73b0-52b6-a5ba-1c81ce7d73e3", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f7154a2d-7851-5fac-b6f6-8a0f2e4f5987", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b276c45d-23b2-5727-aae7-673b450b8dde", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c206634e-eb29-52ee-a3ed-13bfb528f070", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8ffbd4fc-aa6c-57c6-adb3-9d29f4b00d16", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2df3d97e-7f77-59bf-914f-481846534798", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:63614d87-0246-57fb-bcf7-fb440123f918", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4c49e4d4-e5b4-5e8b-a2a7-12b2eecc20d9", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a1c853b2-5608-584d-bd5a-b9deecab5856", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ea55d6d1-2864-5f86-a6dc-be969b56a1ab", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3923fa98-5534-5f6e-a5bb-feb63b8a235f", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d2cf5671-d26c-5422-9af4-7da1d22ad195", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ed0c1b52-dee0-5260-abb6-8da5b1d5dfde", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:92979981-4701-5200-8182-2f327fcc5db6", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.1" } ] }