{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7ff2a8cf-4b38-5d9b-be4e-77077aa935df", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-websocket-client-api", "version": "10.1.18-tuxcare.1", "purl": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:fb45fc44-e121-5b6a-bfd5-90255f4f3b79", "id": "CVE-2024-23672", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23672 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3145bc64-7cde-5e06-9bc8-4a9910ce45c3", "id": "CVE-2024-24549", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-24549 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:39d91e03-2452-5996-af71-6d5b2cd85984", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:df56da26-51e5-5052-b70f-c4da08b1647b", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aee30e7b-bf23-5cdc-ba22-e3420f84e996", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b15ff0d-8586-5b20-8ef8-0a95cb342241", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4d7c063c-e575-59f5-b3ea-91d31d98cc96", "id": "CVE-2024-54677", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-54677 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7ef3b18a-7e6a-5fa6-8a40-a704ef2fb2b8", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fb6871aa-acbe-5b4e-a8be-6da9aa9234c6", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:63de1e21-721a-580d-8bac-dcfd90b96e5c", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bff368d3-d7a0-5ab3-9689-0d84b9fcf5c8", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2c771fc9-da79-5abb-aa5a-4f2d98d5a399", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:785dbc57-7909-504d-bb65-e383084cf603", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1f1f24b2-1583-57e0-9bab-3c77b5d55eb2", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:87f2d0e0-993f-5c10-a105-512c00395218", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e6ddddf-8c04-5697-91bc-d033054de6cd", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4d8cab87-50a9-5f8a-8eed-536447a37d6a", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3d5e3735-60f2-572b-8b79-c542c292bd04", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b68eb2d6-a9e7-5edc-9fe4-85858406e6e2", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:08c8934a-b42e-5e13-b2a5-7e2412a0cdfe", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7534454c-d235-5091-ae0b-73f6ebe3b99d", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:07db209b-b863-54e8-a3f3-d4d76c789be5", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1bfa8a24-9f80-5d1e-b5d6-fccae753f483", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eff1b902-511d-5f00-b978-e81bf0ed753c", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cb3963e7-71ac-5c65-938b-f2f4757e985a", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ad48d39b-5205-5b63-9aae-e21be0c6f9cd", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ccf60d77-1c56-5933-8197-9cb0707443c3", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d87167bc-b338-5181-9926-d194917cd903", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8ffcfe52-8501-52f0-9216-fd545e24fb42", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3c1bd1f5-58a7-5f6c-a143-7f9122365c40", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d5a4a31b-aef6-55ac-899f-b6176ab30511", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:acc2b93c-8be5-5f91-9617-7b597039b5e3", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 10.1.18-tuxcare.1 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.1" } ] }