{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:971709c3-4fee-5ebf-8444-9a8335896575", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-tribes", "version": "10.1.18-tuxcare.2", "purl": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:0312dbf6-363d-5e67-b71c-c24319acf87f", "id": "CVE-2024-23672", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23672 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:079805c8-cde7-579f-a7d0-2f5d031acc7d", "id": "CVE-2024-24549", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-24549 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b12542c8-80f1-5980-8dbb-028a58bd3ddc", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aaab78e1-1116-5139-8805-83bbc1e83c67", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:04af323e-3b79-5ace-a859-067d33c870de", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:12734277-acd2-58ab-8ce2-54616d271394", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b7958586-fb71-5740-b7ef-637ace924c3e", "id": "CVE-2024-54677", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-54677 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1b0bcd61-f392-5fde-873a-b83c346260bd", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:30dceee5-d1e4-57eb-a50e-62ccb16222a4", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:40138dd6-391a-52f5-84ec-cb2913f0c416", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9e3731b1-7138-5a7e-b9af-1dcd73aaef53", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6e6522f2-8431-5b35-bcdb-c90b74cdad2a", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6ed66367-4a16-5a37-9ae0-52b434936c09", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2d54273d-7d9b-5659-8362-23ea956f5093", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:32203997-99e3-549f-ba30-f483ba1802ea", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5a510052-9946-5828-8e58-dbc6d3e4a935", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:39c4ab87-9f78-5005-a08a-a1682cb960b3", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9012c215-261c-59af-bc16-efe281bcd564", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8660b6af-d364-59c8-851d-1bed3ab8dd54", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d9764e80-d47d-56c9-8a9a-67a33372faaf", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8216484d-0e84-5fb8-a86c-8012c51b886a", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:291bffd0-766d-5725-9921-fb974c9f415b", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ca739bf6-7945-5140-b0d1-484421fbabe6", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:325cb7dd-1087-513a-b196-abedb33e941d", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:972de59c-01d9-5bc3-9885-89fffb964499", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1614de4f-9d29-5ae8-bad0-ebadd9b44838", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ca836cc8-e024-5a78-ac4c-3bbd427c1101", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:69a087fe-5d91-5edb-8de1-8562c0eca0c0", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:98b57f72-285c-56d5-a0b6-5861c09c444d", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1781629d-64df-5879-9016-ea3f4e3c27a2", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:51c18374-aa17-5458-9c3f-d9266b84cd8e", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:00bbd691-3573-5c11-a57f-0bfa7cba9844", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.2" } ] }