{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f721f080-a212-5e68-9761-5abfae52e152", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-util", "version": "8.5.100-tuxcare.3", "purl": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:1399213d-1dd0-595b-a36c-b5d3e5761422", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3d31404b-69cf-56ad-af33-d3aee287a2d6", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a7836ac0-52b4-56f3-91a4-38148217e391", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1921ac5e-129c-5a28-968e-3c4cfbcdbaac", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:311fdf14-86e3-5188-b7b3-7a740f3d6550", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f3e6eb1f-0d8e-5c13-b789-3fb04de6295e", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:41557cae-47b4-58e8-8cad-37f452e436a7", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0406eea0-5696-5afa-a972-8fdfc6d2b2d1", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bfca80df-6246-520c-b4af-3d838a7c0a3e", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a3999c0f-6e4d-562e-a7ac-f9fb1c3a47f1", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:70d877e9-d69d-5892-9695-e5b82a7557d0", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:65938eb5-7185-5fa6-9a5a-5316aadc2aa0", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dcff6cde-5c64-54af-b300-a566343d6e75", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0ec7e6bb-ce49-5d57-b476-dc4ceed8b6c5", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:262462ac-9602-578d-90a7-54c08b9a4756", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c6de28e2-0e1c-52e6-9c57-e21910bec568", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b56a8eae-b7bc-5dfc-93b7-10ec127db83a", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5b581bf2-c7cd-5a82-9894-ef28e9340817", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:911440a2-6ffd-5878-a75d-b8237c999a12", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ce8a5e7f-19df-5c41-ade8-a6078862c0f2", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:da386cee-7b75-5df0-8f99-3ecf4a62040f", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:41d15cce-8565-5ecd-8eec-e3e2e8e9efdd", "id": "CVE-2018-8014", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8014 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:157a92f0-9225-5af1-8f60-dead1c15590e", "id": "CVE-2018-8034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8034 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:751bec15-1a63-54a6-8f48-fb44ffb6515a", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:764989c8-c5db-5e84-bd89-9263631fa760", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5383df4c-cd30-5e51-9adf-ce741ede21d9", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8e7d66e4-ad04-51d5-b98b-a8f4d8396303", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-util 8.5.100-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fc898cb4-82f1-5223-aad6-4926dd83e3f6", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:64caa849-4a2d-5b07-93c2-ef78dcb76729", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2e559e18-2edf-5297-bf92-da2617e9cf38", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bc7e0194-9a59-52a1-9e98-364b8b7a704e", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:41853d7c-635b-5a65-a360-8b31d7a851d7", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:89c5c560-a1d1-5c05-a151-f8272f4a74d6", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2f3e5789-84d2-585f-89cf-11e146c7eac8", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5ecf2718-ebb6-533a-8c58-4ef6ef31c96b", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:98fbef4a-76bf-5380-b25f-b030fa5b058f", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:eff9a4d1-f2ca-58e9-8016-ee6af950b10f", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f56e9476-3f95-5838-a198-43aaece394b8", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:736c3bd2-83bb-5761-984f-6ff7e3903111", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:34a95698-0010-5241-ab7e-45f5e8a9450f", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:93125105-ab77-5bc5-b07c-c5cace781f31", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ff263cba-c177-5f58-8064-629bce52bb51", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c900b91f-eb20-53bf-9b99-14f75ea052d3", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1fb00089-e4a9-5917-b1ee-799ba187090b", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2f1538d4-0bc2-5dd9-8580-c0cc114fb055", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2c974a96-d7c9-5347-8af0-d35130226ee6", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:775a1a7a-e796-56df-82e2-51019e8b9662", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c3ecb77b-5438-5480-a55f-091eeb49aa83", "id": "CVE-2025-52434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52434 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4e41d760-da53-526f-bf02-b38033cc3b16", "id": "CVE-2025-52520", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52520 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:958f323f-9e38-5f4f-b132-94c854b78633", "id": "CVE-2025-53506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-53506 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:becc2c33-bfa1-5122-8219-0980eba5b4f7", "id": "CVE-2025-55668", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55668 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2a57b476-4059-5a1b-9e8f-a4b6d5f2d6c8", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:28654246-0ef6-5995-a340-fea5b621223c", "id": "CVE-2025-55754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55754 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2d507b22-5bdc-5719-b252-aa58941792e2", "id": "CVE-2025-61795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-61795 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:58f94897-f0e0-5b5a-94aa-03eb23b71e8b", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d43b60d3-223d-5736-b32d-40bfd5fac023", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5196872b-98d7-5e8c-aad7-4952a4f3b811", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:07b6119e-521b-5224-8273-fffce6aed9dd", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bc00961f-e697-5ce0-b4ed-686c42feea22", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f0c8e0ee-ad57-5c34-beb9-1d769ecb94ab", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.3" } ] }