{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c9947dee-34e6-574f-92ff-2953631ce672", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-websocket-api", "version": "8.5.100.tuxcare.2", "purl": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:38ac1784-0dd8-5bbd-bf88-e9a454cf05e3", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f90b911d-3910-586d-8752-a660675cde90", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f6789f72-1133-5f71-a9aa-15f2ebb90f66", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0bd71f2b-ce54-54f9-a514-07d918fe0242", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b407d65c-c8bd-5a84-b03c-89c518ecc2b0", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4d94104b-ea5d-5df4-bc15-6dd08216e6ef", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a7ec5a83-600e-5171-9350-7c3827bbaa3b", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:744b510b-5841-591a-90f1-009544c99550", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:42eedf3e-6410-5314-b522-f0690daf72e7", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e778ed5a-7c16-56ce-b310-94e62f9272a3", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:182cdc07-1a76-5097-b117-22282e2d6ddf", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6f2c7ff3-d9bb-56ac-8d31-c58a20276a39", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e08c8d06-cab1-5439-bd11-5d240d10604d", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:68d348f7-f162-5654-ae96-42f582db4e87", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3abe5d9a-0099-5141-b1d1-965d2742dfb7", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d8d7ca21-b9ad-5cff-8d8c-eac99f11632c", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:264fa0b8-ba37-59b0-918e-20cf6cf6eae5", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ca24e8af-cf8c-58ae-bfe2-506d1b5cf7d9", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:81cb7538-7fb3-5f40-a61c-c61a8d335886", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:366d56bb-63a5-5c26-9291-b64e98dae618", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2a1dcf8b-92d2-5cfe-8ab5-8fcc5ab0b37e", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3133da2e-24df-5437-af62-e418c58fb116", "id": "CVE-2018-8014", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8014 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d3cf1e84-4184-5268-a913-6ac6eea628d7", "id": "CVE-2018-8034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8034 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e766e662-1b70-5d90-ac43-b5e5df6f2c38", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a12789cd-6876-5dab-90a1-e714650432e9", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:62137ea4-093b-5837-b21d-babca3c1b724", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d83d7007-702d-55de-b885-03e120bcb771", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-websocket-api 8.5.100.tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:97d906ba-de1b-525e-8208-c7be1a863a21", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4b23cc2e-7d1d-5928-9d28-70e6b6c6a5c0", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4600ef7e-bcdf-58c2-8c4f-38493d8d7447", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1de1bbb0-f853-520f-aea3-250e98ab5c58", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:83d27e3d-37de-50b4-8012-4be771e5fb6e", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:645e011b-cdca-5d09-99ad-8c5babe085e7", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b7a59ba6-0e76-5e1e-8046-45b44eeef583", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b1549e6c-42b6-50bd-af48-503384e4c4ae", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5f4ab7d6-a1a5-58ab-96a8-c59b6e9b6d15", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5a77890b-4463-5112-8980-ee847276feec", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b756c16b-b26a-5d14-973d-89b5fec6e4c7", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f9e4adb0-ca11-5c5c-b5b3-e612eb11a8eb", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7e2a7dbd-035a-50eb-9be8-27bc5cd1a089", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a2a36ccc-81fd-5ac3-8e1c-5744ae40857e", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fe55ad57-76f2-5fd0-9661-ad6c597e59bf", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b1e4a985-0be8-501f-aa51-9469de65d2a7", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fe08d766-8e70-550d-baf8-7b64adc358cf", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:347a2b17-f301-52e9-820d-f24688d749f4", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:175e56d1-87e7-53e7-9bf7-d83a55b4ef04", "id": "CVE-2025-48989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48989 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:89692d6a-8c82-585e-a4db-7bf00c0d3e72", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4bdc1f08-1586-560d-892c-93a04ddd2e03", "id": "CVE-2025-52434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52434 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:03bdfafd-9da0-539b-9868-11212c3299fd", "id": "CVE-2025-52520", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52520 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a496faea-be95-5ca8-8e4c-296665873bb1", "id": "CVE-2025-53506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-53506 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fe3acdb2-a781-502f-bb47-90e6207e63d3", "id": "CVE-2025-55668", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55668 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a5f481aa-2dfb-5ee4-a3c7-b2e74ad5d167", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a55e2537-0850-5999-a0f7-ce52424ca40a", "id": "CVE-2025-55754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55754 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:59f3f8f9-e9c8-5894-8999-a9c219222106", "id": "CVE-2025-61795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-61795 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8132d511-5736-546e-834b-981c540f0956", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9e99327a-781b-5d8a-b9c3-c665216a20e9", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4e63ca1e-5119-598e-a871-28331dcf418f", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:820a5368-7b45-58a7-a977-714b06fc6bf2", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e4d1273e-420d-59f4-a989-04f4908d67bd", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ad295a03-4910-5697-8908-d2f8da313a8a", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100.tuxcare.2 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100.tuxcare.2" } ] }