{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7b12df49-cd9d-5a82-ba68-a140de8f5ac3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-websocket", "version": "8.5.100-tuxcare.7", "purl": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:46c6bc62-43f0-52a3-b4b3-3e65aa5884d9", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a559252e-b9ce-5a9a-91b1-6235dd49df19", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5c769b3a-661e-5aa1-8dbc-6492ca8a81d0", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:177d7442-8d7d-5b10-9d17-b658eb995e40", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2af41f4d-fab2-58ea-946f-4658e4d0cb27", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5392445b-5930-5130-97af-ee2c151e6fc7", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6dcb3f81-e040-59bf-ade3-64c968a60240", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:36147563-70fd-5592-abb6-afd6807cfa90", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2acb3a22-60ab-54f6-ae35-c36c14f159fc", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0d497821-58d5-5842-991c-6f71e324774c", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b56d5543-a4c1-5f33-b154-1f10a8de384e", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7af8215c-96e1-5d6a-9aee-06910736d64a", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:36340a0e-1f18-5e58-bd9c-b2adb23f2c42", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b3fc6265-9c28-5f19-8a54-b690fb077a45", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:483c8ef2-1108-5387-87c4-cfb3f28a6f4c", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ddcfb050-cd66-5c3d-9f13-5a6d14f20ae1", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ba14ed22-f109-5f82-baf0-371a0815ab65", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c50bf2df-4aed-511d-8c9b-cba6da2fc3fa", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:dfd3db88-401f-52fa-9d59-6dbe846b848e", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:96a670e4-144e-507d-8edb-17455ee53e3d", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3305be0c-03a2-5306-9feb-4e54ad0fba11", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6aa33f9c-ffa1-5d1b-a98f-31425273d2a4", "id": "CVE-2018-8014", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8014 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5ce52d0e-3b2d-5513-9e78-8a740ca2d1b3", "id": "CVE-2018-8034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8034 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:619f949e-af2d-5889-aa36-42bb93a4959d", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7fb689f5-fbd0-5b5d-97a4-f6e97da8f9b5", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:48e3b0b8-1650-5a98-ac15-80a63141a1e0", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:43fc309c-d50e-5f6d-bdf4-88eafbb0ca33", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-websocket 8.5.100-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:8027a9f8-b368-5fbd-ab9d-05ec1c0a9732", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3a90e804-6a14-5c24-9400-a3741b55d3ab", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9b0ecdb8-44ea-5419-88f4-cf37c1bf8c37", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9d59e06a-5470-5675-8776-09e33a331b0b", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:49cbc644-1efb-51d8-abcc-9b5f328565ff", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:08ae7d3b-7eb6-55e1-8bca-60b429015505", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:8cfa432b-8520-5f35-bdd2-0da905750179", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d754faad-8fdf-5aeb-9abd-1e16450e6597", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:54a844e6-4d35-5d3e-b596-6e0c7d4f2d65", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:94c28c92-0dab-5ddd-8b1c-900d283bc58a", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9e859817-33bd-54c9-896b-2b92311dd226", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:09c4fc26-1c82-57f9-a958-ec0240f363cf", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:04c5aecf-2ee3-5bb8-93f4-f70d8df9a272", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5244aeba-f02c-5b10-a66b-edb2915cf82a", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7f178241-0f2e-53aa-9301-8a43b0afcc89", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:84e51ddc-452b-5d4d-b547-63024fe630b2", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:37b48f71-acc4-5fcb-b817-71878976865e", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e5f5e819-8ae8-5504-bd1c-20ce72c0faab", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7667f656-e426-582a-abea-02b207269530", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:831e5462-cc4f-5046-8af5-3a02491cb317", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7c62a2fb-de63-5c53-bab4-79fabe13ef0a", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:544bd28e-ad01-5a04-8357-1c14abbe8188", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e362bc53-3127-5a6c-bb95-3302fadbe099", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:67e1336f-f624-5604-b8be-e847927cc71f", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5d999099-f370-525f-829f-b8a924121000", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ec7c759c-6c79-536b-96e3-575535e7acef", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3266e2fc-d3b2-500e-a5ce-20785fbdf7b7", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:8eb6ac7d-98ea-517a-883d-3c2003de4aa2", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9416c27a-bab4-5bd0-8ca4-8980b8049bb2", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5eaf0095-b97c-5f6f-b4e5-3885d0ed9281", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a785c4f3-6819-5e98-8c2b-c28683d06d74", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a2e8a888-e94b-5f60-8453-4bf99c470352", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:69beca20-190e-55d9-933b-4fafef99046f", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.7 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.7" } ] }