{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:dfe8d4a9-6aa2-52b2-854f-8bc5b7895d4d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-tribes", "version": "10.1.18-tuxcare.3", "purl": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:45b0c31e-4b31-5fb2-9faf-7572e03824c7", "id": "CVE-2024-23672", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23672 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d67acd6c-0f56-54d8-9034-89c502c24cfe", "id": "CVE-2024-24549", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-24549 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ce626f9b-43f8-5629-92c1-3419b175c95f", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:59fad9a7-5704-5d78-bc4a-94c7429eb96a", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:472cc97a-33a0-5456-8bee-962035fefa0a", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e987985c-197a-51b1-b14b-9dbc1bf65849", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:614f2ae9-6c14-5a6b-9576-0899f5186295", "id": "CVE-2024-54677", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-54677 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8a8a2129-ff9a-56d5-adaf-43626b61f590", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:46f3d09f-68f2-57e0-8c4d-98acc0fef5a9", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b88efe45-56c4-5bb1-bd53-b00702852191", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d2bde2df-a2da-591d-9989-e460bcc980e3", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:37118b4f-404a-521b-9e1b-548342d0c73d", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:15d115f8-03db-5a9b-b0a4-c862dda1f463", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:59339dfc-2ae0-5eaf-99cb-e92b08883639", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:57708fe1-6d7e-5b7a-b0ef-d28116e63f7b", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4e473c5a-e95b-5584-94a0-904499ed36fa", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:112e7145-f035-534c-9dec-daca3a55564d", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5eeb8729-9e19-5045-b083-eb3e812a2a3b", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:855e1bb2-ba72-5992-9934-2b18298c2f07", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e0fe852b-fe15-557c-ad71-9980137d5728", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:798c3fda-3415-570c-91bd-e1a1d367eeb8", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:513e8596-a3f3-588f-a92f-9d5884d2e2df", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:78d0e5bd-fd70-54ef-b563-f19cc66f2cba", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9513944d-e7c0-5161-8525-97d98bc15d11", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8978e650-6bd4-56be-8891-258755f7b391", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:24bc67c6-fe28-561b-aff1-9af8165767b7", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f7a1fc05-41e8-500d-9203-fc5e83802c8b", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e18ba895-97ef-5463-920d-89837b774b6d", "id": "CVE-2026-29145", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29145 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:67c1725a-da8a-53e5-ae72-882356bf2d25", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:719e6b37-772b-57d3-8749-cd7671820710", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fd4eee3e-2333-5b3f-adec-baec4861080b", "id": "CVE-2026-34483", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-34483 is fixed in version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f73eac11-34e1-5613-bf54-435f9ca0e87c", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 10.1.18-tuxcare.3 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.3" } ] }