{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9c80f46f-8c8c-59e5-99f7-5cecf1781c6d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-websocket-api", "version": "8.5.100-tuxcare.5", "purl": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:27351994-903c-51fe-b273-f4a88755b5a8", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:afb7f895-62fd-511e-8194-bdd30e5e41b6", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b4bf0d89-c6dc-5966-9599-d8b5ed107dce", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:afe8c26e-c739-57b0-a4e4-656d579b17a9", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:44c3a8da-832b-5d06-a233-889a6896786d", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4b3485f2-5432-5f1c-80eb-237dabb811db", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:caa7801f-5959-5610-965b-74e357ce1b36", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6d46ba7c-92d4-55fc-995f-5024db47e4d5", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:dc7d7950-0120-590f-a2b2-3a58fc7ba074", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5ee0c8ec-0ab9-51b8-82a2-a434e2c7a260", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1743bbdf-f8c2-5cab-9d05-4edaca4a86d8", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:20f042a3-5335-5d83-8432-700a4b540745", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5914217b-20c9-5b26-86b8-ded49e5dec51", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:29e4e9ba-d2c0-5a46-b287-d51472caef66", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:23976c5b-db2b-52bb-ac9f-502234437a80", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9953ba44-0517-57c4-ae4a-0582836bddf5", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:642e6b85-86fc-5164-92fe-f214056a8c02", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f6bcb0e1-6b7a-57c9-8eea-b45764195712", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:407d0e3c-b4f6-5304-9e53-83fe3387be28", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e26d1dee-5634-595a-8164-600535842f95", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:04034412-df65-515c-8c67-2486353b6a5c", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5db6565b-ac5e-5b1c-ba95-39a165fb1c6c", "id": "CVE-2018-8014", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8014 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:97ff869f-90f7-51fb-9c41-d39221c986f3", "id": "CVE-2018-8034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8034 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b8cda1ae-7699-50bf-9da4-8553f0c4b98e", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9b2efcde-c3b4-59d5-806f-587782a1c7c9", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:679887bb-1d64-55ed-9af1-10fdd6e58509", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:142193ce-fc94-59ae-bc22-799baacca38e", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-websocket-api 8.5.100-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8151695f-7968-5ccc-8c0e-d1e70f64ba63", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f923cc1a-b656-5eb7-8d08-017b1bff2af0", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0e53f47d-dc9c-55bb-8c13-d44e3c14ac0e", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1403e579-8358-57aa-949d-0dba5c87e0f4", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c9f7689a-a40e-5028-a5ac-ffbc60950ef9", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1cdcf85d-dc10-5571-9425-99b0bf206044", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c2de13f4-900a-59af-90b4-f2e34a90ea49", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d8cc6626-970b-58f2-8b82-3b6fe2f26c46", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5e4f9ff1-cb30-5014-88c5-1fb6166c63ab", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:49da8128-cd51-5c7f-8acd-43b507ada7a5", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8d1498a1-8b2b-5764-a645-47377188db5a", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e9946b55-53e7-5b25-a9a9-697c8ad5d1a3", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:24820cc4-de2c-5e77-a10c-8ece2da27331", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1d110fcd-ea6c-5f5f-ba65-e6e5f6c9185c", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:177725e1-1c90-5c9c-8f3e-e61cf0f6c807", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d6153252-9b77-5cdc-a3dd-c34341a58b4e", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:241dadb5-064a-507e-b3ee-b57f10b17577", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:141c0f12-da37-53eb-84c1-c2425e309f40", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b1dbfa12-2abc-5936-a1d7-cfafdf547442", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b21d8ea2-1487-5eb6-9e97-b6a4dd22410c", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:52975c9f-c90c-55e2-98ad-0df6191d2474", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:80934c13-5ee0-5165-8c86-e79be7023584", "id": "CVE-2025-52520", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52520 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0125111a-c95c-5676-b571-bcd37bf47f41", "id": "CVE-2025-53506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-53506 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:41854a01-a618-5946-8684-e8fcfdf9f1c6", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:61da1fd2-c78f-5281-b352-63150613acbe", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:22c6a6e2-4350-5dbf-a542-9df59412592e", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:59cd1aaf-330a-580d-97fe-a763231dbdcb", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4ee36e9a-314f-5e4c-be93-ce47d57086f2", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:eab18d60-8730-5d2c-ba22-5996f0f2f9e8", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5d039c69-fc08-544e-8866-a24d622cb194", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:472df33e-6648-54f0-901f-cacad3d20f5b", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6dc80801-033f-5a2d-aa31-c7850af3afe1", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bc0c54ce-3058-57f3-a3f4-a83072422a87", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.5 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.5" } ] }