{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:21924514-7ef2-5bec-ab68-aa26d7c4aa9e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-util", "version": "8.5.100-tuxcare.4", "purl": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a64cf074-e882-5c08-8876-a690acb1603b", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:69f43f29-393a-5d97-a935-f7e74b44424f", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f9ab2cb3-fc7e-5ee6-b447-64233b2dd61e", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:20f698ee-2fbb-5748-b9f7-7cdd60f7108b", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3758ea90-9eb1-5728-b77f-9b9c62cd5942", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b3a59729-9048-5c78-a6e4-aaca0dd5f98d", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8d03d050-dea4-506c-8e5c-5ea64214b902", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ef158c50-9b05-55eb-b333-084667cf672a", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6107c623-7b4e-5f6b-9885-2b8c46fb74ec", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b41c3aa5-2844-5cec-be6b-fd0e10cf646c", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2dad3225-a1bc-5d71-ae18-c9ee44cad814", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8dbea508-b5bd-5536-ad7b-e8c26fda3cb0", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9d40c198-d1b9-5b54-bab7-e18db0d2cf35", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ab0d1b7b-8040-5755-a49d-ba2257141413", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1df23e91-d180-5e22-ae19-7d60f3d09019", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a97c4848-6e54-5a8b-8220-692d0263c87d", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d984a944-4750-5ac2-9442-7a41516cc926", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:72221fe9-65b4-5918-aa1d-d179a20f6711", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:23029042-a048-5b79-94f6-f8b60ffe7389", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c26ce38c-d4a5-5000-ab60-4287ea458932", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b33a1dfa-b7db-50d6-9469-3761ce9bacc3", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:71153795-549f-5ae8-aa55-257b235d90a5", "id": "CVE-2018-8014", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8014 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:eddb6300-904d-519c-aac4-6ad34353f08f", "id": "CVE-2018-8034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8034 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a828e22f-5b98-5642-92c3-b2208c146ec5", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:79930546-4f8c-5c0d-bbda-e629526a1e15", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1aa60077-c55b-54b6-807c-4f7b90d37c60", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8626695d-de99-5f45-b767-afd51b75ede4", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-util 8.5.100-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:46266e67-e7b6-5b2e-8474-0a7159cc5f8c", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2db9e0ad-f701-58e5-bfb1-b7b19938ba03", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:77342b57-34b4-5e2d-913f-479367390502", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7cabd385-b52e-5d00-ad1e-a4f4bc10fadf", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ce0b84be-1def-5c48-9252-a2d24a5d3f7f", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b268d286-1d9f-579f-812e-1d0b1461aa3a", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:78cc6390-57f2-5099-826b-b85c8a250cbf", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:219841a7-d9ea-5293-9588-2927f6e28f46", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:579bf4e7-5a3b-54e9-9f7e-fd4157e92fbf", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d883e278-3b71-5b14-8d41-41733d88f135", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:51733e0f-d58c-575b-957e-6fab7c3dd240", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3602ebaa-8bbd-5b79-8d89-6fd09bf73b7e", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8269d880-27e0-523d-89d7-9b2af59104c2", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6c20cc0a-be18-5750-9d5e-454638ad33cd", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:30a43028-2091-5692-8823-e0c2ef68de33", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2938fb44-5ce4-54ca-994d-2fb67e7ef929", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cc8d3f40-7584-5dd6-9528-6dc6e3582529", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:df246483-9fe8-55e2-91ea-fabd93fbbd40", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3111bd8a-26c2-5844-9256-04868765e07d", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2435b86c-df4e-5078-b450-239ea42abc22", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f5ba9322-6ad4-5bed-9c7e-f1c04407d880", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bc7356b6-4aac-5a1b-be95-aea08aec2af9", "id": "CVE-2025-52520", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52520 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f9200053-f024-50e6-b453-78cbb9fcee01", "id": "CVE-2025-53506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-53506 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3709a2ff-e660-527c-8a4d-d9910dda8acb", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c16cd0ae-9f52-55be-914f-4ff46ba793fb", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:91e8ce6c-4eb3-585b-9fe1-58263f518b83", "id": "CVE-2025-55754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55754 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1af51d11-dd63-50f1-bbfe-4f5574b7aa2a", "id": "CVE-2025-61795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-61795 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7cbb707b-a250-5398-9c83-8af0d49ebfe6", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:77ae2fb0-2107-580d-9b5f-0e796d2be18b", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:500ab63e-255d-56d7-8108-8e6274022a2a", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e7013bfb-1408-572f-b82c-5385674a5f92", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:16c48279-c38c-5b55-92ce-ac463de633a5", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5ab05d15-ba6e-5139-b135-44baf1a853bf", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.4" } ] }