{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:dfea95c0-c8c1-5dc1-9cbd-057635f65b62", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-util", "version": "8.5.100.tuxcare.1", "purl": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:951f1ae2-1e6f-50a6-96b8-5cf68fc29422", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:afab996b-a601-5da8-8c2c-162eb4b08f4c", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8014dead-c0aa-506c-854d-d3768d87fe76", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:02d2a5fb-a591-5a47-82fd-7d4b62cbb89e", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1e3f10db-7062-5ee1-bb48-ff7bcd9139e8", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d6c180ef-4f10-5121-bc2c-434b2d09c7af", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ce359729-5133-5335-bd63-5556d1b599d4", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b9700d74-a457-5ef3-9b0d-16a9aeebd4cf", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:570bf65e-0d3e-507d-98b9-17fc642fa14d", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8a200609-985f-5d4d-a204-397acde35d27", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fd900d3b-664a-569e-95c8-519ea88bd91f", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0bf1d6c4-a365-56b9-87c2-dbeb7cf0a68f", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e18b1fcf-bc20-51f1-ba0f-a428b71bba1f", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bc60fea6-79a2-5a1a-bee8-bdb0dd4a2dbb", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:25406ea0-2439-5a8c-ac0e-f23f15c679ba", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:34c455ba-4b66-534e-bf27-f66266545559", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5000451d-1720-5836-b7db-3aec697230e8", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd42ebff-82f2-54e1-a7c0-58be1c73766c", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:87699c68-e700-50a5-92bb-64ba228cce31", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4c388992-0125-5e75-bc5a-fd24358ac80b", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:620e0cab-341f-56c9-9898-d51713d7927d", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ece8709d-3efa-5381-9a6c-92093f2c0135", "id": "CVE-2018-8014", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8014 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:abfa1d93-dd04-5655-9989-370f3326b56b", "id": "CVE-2018-8034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8034 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:45ac2d9e-2523-5f5e-9578-7796bd59d3e1", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2d85d6ce-a8a0-5984-ae47-dcef7f9c2e01", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e40e9710-f277-5646-b6b4-2562f733b033", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0eeb25e3-2238-5034-b863-997a00927c85", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-util 8.5.100.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:21226428-bcca-50a9-af1e-5e2808aae366", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a50efe0e-be55-53e2-9b56-d685d2cda689", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eed752ce-e6f1-5866-ade4-3eeb50eaba26", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e2baa30e-1e73-5a08-8ca3-0c9b53513189", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:41340872-5e57-5171-84b1-b44a6bdd18ff", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2d4a4f97-0ee3-5a4d-9f12-669cc7cda398", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af6820ac-e58c-521d-90d2-462b103d8fcb", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c2196dbd-7895-5bde-b4d9-ba1f6eeb3bca", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:496365bf-ee74-5a21-bbc3-45922b001358", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aae1ebcf-b53c-51bb-aaad-72f526a88579", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7340baf4-58e9-56c7-a9f6-f600c0b0d416", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a21e2429-4ce7-5002-a4e7-6466ac0eea52", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:efbccb04-59b1-5420-b44e-82a0b5d27d79", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da6bc681-cd1d-5982-8cf5-34e8a2b5f48a", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:51f13ff4-f456-5f3e-8cb2-a111d118dd35", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e5d786a-4815-566f-9eac-7de350ad83b6", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:97fac3f9-bc91-5ec9-a5f4-f024920120d5", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8b46b664-036b-5a63-b85f-bb19b6111d96", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5237485c-3788-5e22-822a-a30f1d467157", "id": "CVE-2025-48989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48989 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cb559db0-36b6-570f-9a9d-3ea9c2a7d2a6", "id": "CVE-2025-49125", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-49125 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3865c95e-be74-5850-a715-2d3e18002d7a", "id": "CVE-2025-52434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52434 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aa4ca71e-013c-549f-8253-7b145e001849", "id": "CVE-2025-52520", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52520 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:766f08f6-8ff5-53be-831f-692be210885d", "id": "CVE-2025-53506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-53506 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:76bc2c13-84da-5c57-9e9c-475339a2d01c", "id": "CVE-2025-55668", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55668 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:be878e92-7e99-5492-9025-556e57f3a882", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5869cc62-e7b6-54aa-9a4c-091828df3cff", "id": "CVE-2025-55754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55754 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:005f038c-770a-5a9e-8433-153b746c822c", "id": "CVE-2025-61795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-61795 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4c9b4da8-8477-5180-a17e-a52cf1fc8329", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af4c3cc4-c322-5e55-862f-2038cee520e9", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f550c7ea-612e-585f-b633-22b16a25542e", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bc106f75-62fe-5398-9c3a-214ad9648269", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bd79bf0d-6ae9-56b7-bea0-9003313ce1db", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c7f47150-7016-5d34-af37-2d0823cff978", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.1" } ] }