{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8397f619-17f9-5c23-b488-ae0eb46fb60b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-websocket-client-api", "version": "10.1.18-tuxcare.2", "purl": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:cf271ebc-ef9a-5f4b-aab0-71877e0c33e9", "id": "CVE-2024-23672", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23672 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:96935930-17dd-5fa7-aaf2-e1020170698e", "id": "CVE-2024-24549", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-24549 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0966e10f-597c-550e-b630-607c58e6fef0", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a4e1747e-0ede-5e75-ae4d-94f88d1fee9e", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3d3413dc-166d-5659-8aff-77ccb88b2892", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:03f904cd-d339-5413-9e1c-5afffe540e79", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4a3adca9-bf3a-58e1-a779-3a68519f1ce3", "id": "CVE-2024-54677", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-54677 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4badb4f4-0b8a-54f1-a576-18ae947930aa", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:569e426c-a3e2-58c4-8ca4-fdcf9fc8005e", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f882b8d1-7890-5629-b5eb-872fb55ff36d", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:273fa2e2-4234-5b61-a6a8-2c58d431252a", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2ba818d5-c3fc-500c-94c9-291fce564821", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:23e4655b-5f6a-5aaf-affb-590468e90368", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ac2e9567-72a0-54b2-8f0f-f79180873f79", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9cc315aa-c437-5f13-97aa-259732d05b36", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5ad4e198-2cf4-5d97-a8a3-bc62911c9487", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8766e14e-a609-5e47-815f-39eff48c33b9", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:31f815f2-7d4d-53e7-be70-caeaadea0775", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:84862508-376a-5b9b-9d46-4b4b0eae98e1", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:adf82b4b-b6da-5624-8a1c-7c7e45df27ba", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3a6f6aff-7ec3-52de-8e42-25b5434398b9", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8d85b476-4b44-503d-a025-a9395f532439", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:389a241c-0624-5824-ae20-bc607a24ee15", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b3d8baf3-3c1a-5519-999b-800169ce598d", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9aca89dd-2cb6-5e1d-bd48-5d884e6e4d30", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:24377680-b5b4-59c8-9985-117e6daddb98", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:03fc1ed6-2eb6-5e2f-9c45-6990ce3726ca", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:98897a20-a328-5c37-beb7-4d039102ecb5", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5f9c4eaa-7288-5361-933d-25bd38346fc2", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ce7fcd4e-1137-559f-aabf-1fbe6b1f72b4", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:518200f4-47a7-55cc-abb1-0386c3f57369", "id": "CVE-2026-34483", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34483 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:52e1c96a-6208-506c-b46d-8dd882414381", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 10.1.18-tuxcare.2 of org.apache.tomcat:tomcat-websocket-client-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-client-api@10.1.18-tuxcare.2" } ] }