{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:48eea6f8-66ad-52a5-adb9-9ff250a865b1", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-util", "version": "8.5.100.tuxcare.2", "purl": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:12799a19-1cce-5ab0-b9c3-a5449507e2e5", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a6245213-d401-5027-81b2-0a6bf8de710d", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6a6fd874-5c82-51b3-af8b-595e73b31f9c", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:07307f46-9b7b-56fd-a6b5-cf8c8fccb459", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7f01658d-56f4-57fa-beba-50e8de13a86f", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6718891f-ef57-552c-b65c-9ba060c63d24", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8ee0e0c2-dcc8-556c-8bfd-4a053514c3bc", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bd57b4ac-5ac6-5f86-81f3-d5f9cfe30800", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:51168878-36e7-50da-9f7d-0d9f51fe7f62", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a43d321b-1d41-5461-8e8d-2b5dad183ca8", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:deb25b9f-e145-56da-b554-7f0c59f75a79", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9dfd74a4-87f4-5752-ba53-a656b8c0fa21", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:820a9870-ab26-5554-bf8b-5c048325bf00", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b4975e54-3038-5894-9172-15585d33d678", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ea621996-add0-5a8d-a655-c561ac50a73c", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e5326d07-2dcc-590d-be6c-cb40f4d3f2bf", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b4174912-339a-5125-bae5-6111464c26e0", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c6d12802-7778-5431-a1fd-bf61f98f090e", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d8039316-41f5-5ff9-8079-a64d5cd43a31", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cadaa20f-98f3-56c0-a5ab-2825cc27bfc9", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a116e6c0-c150-5798-9b69-eb03cbfc158f", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8860c6dd-88cb-5a24-86cf-35cbc1a5e638", "id": "CVE-2018-8014", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8014 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:43a0f7a7-1308-5e98-bf54-a9f97186ecb5", "id": "CVE-2018-8034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8034 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d01d7451-b26c-5ca7-ae98-14962764284e", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7e78909b-7c50-5514-a8b8-b7803f190d95", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:71f26864-be0b-56e5-9180-6dc9ddc582a5", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d04bd6a3-b635-52c0-9147-67c73c773791", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-util 8.5.100.tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aaf2fae9-30f1-55c6-b5dd-274638693376", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b75d70f9-f704-5738-a380-8be2054bed35", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0ff20824-ccc2-579f-9b90-49a08164f013", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bc137a9c-5c1b-5c8a-bf70-6c68e5c4613c", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fffe6e8b-363c-5160-9eaf-451e8115b23e", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8271b9db-3a1c-5451-b25c-1e755618f316", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:590680dc-40bb-5628-a5f7-a829b9507829", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6284ba48-9173-526b-9d93-f829d968673e", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e5d20039-0c4f-5bf7-b00c-33a2c521ca4f", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4fefa639-a3e4-5b30-8c45-c3df7279ac44", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9c6a32f8-c94f-5894-9e15-b2ee0af9e5a1", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8b07012e-aa81-507e-95ec-a605886ce123", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:035477ab-3c27-562d-9568-f542a03d5a15", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:faebd85b-4189-59ac-b566-2a2c90df9276", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:479e4b65-55f9-5002-bfe3-e1f0ab7996b4", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8ff01c32-28e8-5f69-878e-0b7d6dab47be", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:31b7fe98-3ea0-5268-a4e7-42ad1b17319a", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:56a3fc6b-e336-5fa4-8886-e109c4a122b9", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:24987231-965c-5873-8078-b0ac98dd0d33", "id": "CVE-2025-48989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48989 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5a3ad8b9-3cf7-571c-bee2-cd1dc46a138c", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:622df83c-3f35-50e2-aefc-39a4700d57ea", "id": "CVE-2025-52434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52434 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:acce39d0-619f-5cf2-8905-622d38695e69", "id": "CVE-2025-52520", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52520 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:488cc2db-22bc-52b4-9477-ccfbc7ec0bd3", "id": "CVE-2025-53506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-53506 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bb2f83c6-04ab-50cc-ba39-f21f6941dda0", "id": "CVE-2025-55668", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55668 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7257a184-dbf9-5706-8fad-e5b9c2892ec8", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:27c3a414-d0e9-57de-a141-1a6c9127c4d6", "id": "CVE-2025-55754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55754 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:062a45ad-d381-5996-9ee1-a0e344540838", "id": "CVE-2025-61795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-61795 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2d2c7a44-0a7c-5338-ab68-4a7bdb5fb4b5", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e5473636-e68d-5837-ae30-b47f87496c65", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d043b523-e851-59b6-9525-8c249e2980cb", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:03f58f59-29e3-580d-8e15-d6c6dc72251b", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7d4b37f8-4d81-5723-90ab-b6dfcf74834c", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:38c7f068-2386-529d-949f-cee0078d78d7", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100.tuxcare.2" } ] }