{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8f5b6f06-d9d0-517c-8651-b0484db0cb0d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-websocket-api", "version": "8.5.100-tuxcare.4", "purl": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:972704c9-73f6-52f8-9ce3-dc10f7f39e18", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:68629a51-78a8-53c1-9aad-b61ea06a7bc1", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8aee275d-80e1-5bf8-88db-43f22896338d", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cfaf790a-21bd-501a-ab9a-769b8b697f3d", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7c67832e-1f6f-5fda-bacd-e90794766f03", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c729924f-e9e0-54ca-ad50-7ad08fabfa42", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3ced136d-5d0e-5bda-8490-b968a19fb226", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:88a39d47-7073-5527-985d-f59e78f83eab", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ceb14075-0fb9-543d-8058-b38a0d2b103a", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1e89a3b5-7523-58bd-875e-10c37ecbfe56", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7aea8c61-a011-5f99-9e47-ebef7230b7ce", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c6c128e8-afa4-5c0f-bf74-3ea1ef9036f9", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:205d96b0-21ef-5336-aa1a-9f7198135289", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1f9f0821-f4f8-592c-ba04-1a84dc1e1442", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2251ea46-fc75-58e9-b875-e3373b6c8cd5", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:37ab0709-9d98-55b4-87ea-13cf4190954c", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:21b73395-8fac-578d-88b3-7f564725078d", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:51e702d5-948a-5561-a0e4-4669cd55d4d0", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c98f3987-0aad-5606-9601-d5af23fbde0a", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6824966d-a34c-58c6-b692-4dbf7737c32e", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:adabff6b-7a08-538a-be4f-07e589d9818b", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a71a33bb-0348-577e-a701-b7f3054a07fc", "id": "CVE-2018-8014", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8014 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f98fca64-84f9-56c8-a78b-7640ae276fdb", "id": "CVE-2018-8034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8034 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:094de229-4be7-5760-a7a3-d1ba69bf56ea", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:35dfa043-04b8-520d-959b-00d403c20359", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6fabad64-c026-5e4e-ad4a-b80c92969ec2", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:136ac7fc-9d86-59a8-91bf-ccff1a0a6b02", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-websocket-api 8.5.100-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ca43c287-a37c-5c7f-a006-78df3da26b64", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d97dee07-5dae-524f-8b31-82f155ff11df", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cc6c100f-8224-5fbc-b213-22df487c568f", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ebb1a403-a6f4-5efc-bcfb-a817659fc2b4", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b12fff79-ed15-5fa6-8dc1-e4c89caf5bb4", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cd6b7053-e3d6-5cf7-9fd3-efe170e64e24", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b367ae01-3afa-5342-a71d-36896b65762f", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b7fc0d88-45e7-5300-bcc3-f7396e2e2049", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7e488446-72af-55e9-bfdc-0d78cc09768a", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b5ede24e-f6f4-5535-a8bd-d2f752e1d066", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6aede573-ffbb-5f3b-a13a-8b7b0dc46306", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ff18a048-e4d6-5458-93a3-07f328134d22", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2592a9c0-f3c0-5ca6-9e41-6b58401aaaf0", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0c978507-826e-56ec-9fda-507902bef079", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8c8e25cf-f124-55b9-a696-331ab75a5905", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2a0f3108-d525-5bfd-a77e-1a43e7089e7a", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e5bb280c-337d-5847-a686-02533084d04c", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:31c10916-aa42-5a1c-9acd-f5813542b773", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:93161ef9-52dc-5c62-9882-6002adf529e9", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d5965a9e-2257-5a5e-a15f-e627d3314afa", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b40af1e5-8792-5a70-9d57-a4953e0553d6", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2ff2821f-0e4e-5ec8-a373-7d3d62fcc832", "id": "CVE-2025-52520", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52520 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c91c8e5b-8c69-5d3b-8b48-2b3bc1e3bab6", "id": "CVE-2025-53506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-53506 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:303df05f-8ae7-54e2-afa7-9fcf11e10b36", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a3140c9f-522e-560d-a450-987211b17d76", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f632a61f-090c-50a5-a954-f44b758daaf4", "id": "CVE-2025-55754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55754 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:13327e95-8c7a-5d00-82aa-331015f8fb51", "id": "CVE-2025-61795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-61795 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7b9bdfd9-4927-5f23-81c2-76341c87cbc6", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ca97e307-f3bb-58e4-9883-cebf164fcb0b", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:eddb185b-fa29-5ce4-a0a6-e02b38093b70", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0adf4a29-b9aa-5b8d-8c32-7fd31db44376", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:35eefec5-52a9-5631-a489-03e6cd53cfed", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f455ed21-909f-5794-b99e-9b613bdf6edd", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.4 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.4" } ] }