{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3dddade7-6f80-5e6c-9349-df5e143aa990", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-util", "version": "9.0.46-tuxcare.7", "purl": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5cafbce4-d06c-5073-943a-3656262908a4", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:cf15476c-dc75-59e7-ac5a-7cb36853e3ac", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:544b5b7c-0961-5577-8fb7-169aa593917a", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:47da9b8c-93e6-5ab3-83de-c2a72929b5dc", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0a51d6ca-2932-58be-883a-22490520a751", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:83bee56d-1b60-5419-85b2-1816794e5fac", "id": "CVE-2021-33037", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-33037 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ee979522-5d15-5cdc-bc21-68c530172856", "id": "CVE-2021-42340", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-42340 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b3c9b2f4-93cb-552f-b4fe-afb0a59a5b5d", "id": "CVE-2021-43980", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43980 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7d33e0a4-fb7b-580f-aa8a-9fccca2daf19", "id": "CVE-2022-23181", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-23181 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5144510a-1399-5778-acc8-f7c10e7a80ac", "id": "CVE-2022-29885", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-29885 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:981cfc6b-f6bb-597f-8205-a1d5bedd2668", "id": "CVE-2022-34305", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-34305 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:cc07190b-2259-5b97-ad3f-0ebdd5b35223", "id": "CVE-2022-42252", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-42252 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:944a9f3b-ee76-564e-a931-4d77565acd59", "id": "CVE-2022-45143", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-45143 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:70f8541a-1275-51eb-bfb5-7927ba17a1be", "id": "CVE-2023-24998", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-24998 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d4e465bc-cd14-5542-a6f5-aceadb691a81", "id": "CVE-2023-28708", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-28708 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e7a3793e-52f6-585a-8244-790d711765b5", "id": "CVE-2023-41080", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-41080 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d455a239-2e7e-53b3-b295-647b7fee5708", "id": "CVE-2023-42795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-42795 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e482e73f-7b07-5c66-9242-12e050dbeeb4", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3a1a7c2a-4574-576a-9dd5-7bf608d48989", "id": "CVE-2023-45648", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-45648 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d8c8774b-0b0c-5fbe-9c0b-b95bfbb001cb", "id": "CVE-2023-46589", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-46589 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:27ebb66c-c8e1-5071-ac70-7e431d2ede2c", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4567874e-229f-589f-ac4c-43661c1b9d56", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:03903e4e-ffdb-5fd5-9ceb-99422d44b98c", "id": "CVE-2024-34750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-34750 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:19f05866-17fe-5f45-8b5e-b2ff10f967f2", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f0cd7f2d-7350-5c51-82b1-479c17b6c248", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f7cdbe23-f1a4-5af7-b3b6-56e3f2bcf25d", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:27188b1d-912d-54cb-8580-d9852f70d890", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:bc1d8d2d-a914-569f-8bb3-3358c5f959d6", "id": "CVE-2024-56337", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56337 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0ef93192-263b-572a-b966-6c2061866b2a", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:792d0000-d559-57f5-b55b-8fd4c0bbbb80", "id": "CVE-2025-31650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31650 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4fb29a08-2635-5bb1-9c8e-81bf2a7c6101", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:935f1122-43ee-57ae-a3f1-a552d5cc0caa", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7d3f2683-3e2b-54e0-a770-5de62dae1821", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:84d94a81-b930-5644-b9c5-561f96d2f044", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ed51b938-0d10-597f-8e9b-1e2879c15fba", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e207bfc7-4dba-5cda-91db-55a5751d4a33", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b04be633-9069-5c82-9feb-d7bed448fcd7", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:1a0c395f-27ef-50e8-a7bf-63e21e3de60c", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:098b15d9-4b42-5e0b-b1c7-0d80468625bc", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:70f41931-f1cc-56e2-a65d-b7f29381609d", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:133a3dc3-fada-510c-9532-af9b80f4d18f", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3df3247c-f7c6-5b0a-aeaf-8011c3fb821d", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4fd5e0fb-9c3b-5a79-a193-614c9b315212", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c188481f-6efc-52f5-813d-bcba26f7bd85", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:effbd68f-d2eb-521b-b993-bb2348b50417", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a173396c-9da5-52ec-b1b6-bc8099f9aafe", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:bbc4fdfa-0e6f-5faa-8870-ca2960424891", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c278cee8-7a0a-5b20-8543-3fcc9acb73b6", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:58ca8964-ab65-5fda-be1d-5cc4c87abb95", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b976ef4e-b4ca-5fe0-83e6-59fb96f7e7c8", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:1f59be2c-1ffe-501f-861d-ed28f04f6fc9", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:97f07c5f-a1d3-5d8c-b586-d603d5d1da94", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2133df6b-3e12-53b8-ad33-ef53befbd421", "id": "CVE-2026-41284", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41284 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:685eaf52-ffe4-5aa7-af6d-94f8529c773f", "id": "CVE-2026-41293", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41293 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:705d421b-b0d1-5dea-a475-4618883a5ded", "id": "CVE-2026-42498", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42498 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0f1b7e76-2f1d-507b-89c4-0344f70ab97a", "id": "CVE-2026-43512", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-43512 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e23fc0f2-9345-5fca-afe9-c5b5d2128661", "id": "CVE-2026-43513", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-43513 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:efa98089-240b-5e3f-9e36-d0410332a938", "id": "CVE-2026-43514", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-43514 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:96284149-c932-592b-93ef-8fe41e3b2748", "id": "CVE-2026-43515", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-43515 affects version 9.0.46-tuxcare.7 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@9.0.46-tuxcare.7" } ] }