{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c0464f4a-bc24-5e69-92bf-54b081c064d1", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3", "type": "library", "group": "org.apache.tomcat", "name": "tomcat", "version": "8.5.100-tuxcare.3", "purl": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d148b672-6037-51d9-9956-8d0743790202", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2fcf3917-5fcf-540f-bb42-e0c79c0f2e3c", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dfdef100-3056-5e09-b271-fe2236cdf48c", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8fbae1ee-25b9-5a95-8c52-d9ebab48db09", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:12f7c1c4-f6ce-581f-8d24-314c29f902fc", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4c1f4ab1-2b8c-5f19-beb0-c7fbc9e5c2df", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6172a13e-b39c-5f0f-ad5a-d37c5985e220", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:91d5b4b7-aa08-519e-8572-5de1be38f69e", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:db997671-7e13-5284-b68f-3fc46104a4f0", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:007b5447-e7ec-5ee3-92d9-bc5ab29a4dc3", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:51d45a6e-07dc-55ba-8f3b-ecd1ba8cd837", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:eabfb53f-878c-58e9-b199-209477be2bc5", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:97e473cb-a22f-5184-b824-f57490d58cc2", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bbc6481b-75bd-5984-b835-2062c1db911a", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3a1b9b56-67ec-5333-91a5-95dfd5cda59d", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:63631e03-7c2b-5d18-a65b-4fa478360e59", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e725d460-fb0f-5dce-ac2a-cee2c6811cfd", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3cb55123-885f-5782-8a72-b1dd48ffba79", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f06d81e9-ffc4-55e3-8cc2-971981fc689e", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e9b73815-5df3-521d-942c-c3640b6ce453", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f9fc61a1-a24f-50f8-8a7f-113cb83b6ba8", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:60f6b430-50dd-5e6b-b492-c2c8eb7e67f6", "id": "CVE-2018-8014", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8014 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:874984e5-9cc3-5de5-b405-75e5f4b85309", "id": "CVE-2018-8034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8034 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:89624ea5-39dc-5712-8b39-275f633372cd", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:96808b53-5781-5b4c-ae1c-85a835a2fc45", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0c9296ac-4ea8-5e46-a8db-eaaabc9b7031", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7dd4f0aa-e669-5f11-a299-1969eb394195", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat 8.5.100-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2cec8ff8-e555-5786-b893-de6c2bb10e9c", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:031e2ff3-0c81-5743-9183-d58fc2fa54fe", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cb727e4d-eaf7-5356-aacf-d9c5b497dd21", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8a2c7cba-60e4-5551-bb07-a7f0961ede16", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:97b64861-3176-53d2-aaea-f8631b8f8d4e", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:905289fd-e28d-5458-9416-7b3a5d039580", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f09fd289-cb6a-5f8a-bafe-3a2a0ee80cb7", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dabc0da7-f779-5ea1-93cf-cba269ad9703", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4393463d-4c3a-5a94-826a-dad9c3f64d48", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aaf75b95-52f6-5fbf-95cd-fa6710117226", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a63b60c7-cb46-5831-8451-25c43b6082a6", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1547ad82-4c05-5294-a7aa-9efc364134dc", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b9ab1c0e-e55e-5eeb-87a9-c0f44b7001ae", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:628ddc07-adce-5797-a0f9-f3eea8aaf992", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f063e24c-894b-5aa4-bc16-7f85c30e6e14", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:17ac62d4-bebd-5b36-a6a3-964a5652fda9", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9336e719-4934-5fd0-b3b5-1786345d53ca", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dbddb60c-dc07-53e2-b81e-907a81f10942", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6acd631c-d1db-5705-b67e-0f9bd5065c08", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f9cdf95c-2559-56f9-b4d9-8180ede5a91e", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:49734dbc-3174-5782-bc47-03ffe4d3d57e", "id": "CVE-2025-52434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52434 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0562b70d-647f-54c7-958a-4d1ddc04377c", "id": "CVE-2025-52520", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52520 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:43ac4d0c-302a-521c-b4de-e65aab9388d5", "id": "CVE-2025-53506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-53506 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4c62b646-3741-5645-8544-659f0f37435e", "id": "CVE-2025-55668", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55668 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bacace1f-4df6-5f45-ab94-2e3a7728ad45", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0b5d7397-b958-51f6-a951-a387ae3fdd5c", "id": "CVE-2025-55754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55754 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9e4e7d33-8a55-5260-ae51-c151dc11ee5a", "id": "CVE-2025-61795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-61795 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bab8cb37-0ee1-5163-8b14-f9da8b243e20", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b35c34e1-c145-54e8-b748-7bc90b2416fb", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1664ab90-c5c8-57c7-aa2f-329422e11285", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:06942c14-82bb-5afb-83f3-f8a638c95786", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b1748483-2859-5964-8559-820f0fce0fd3", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9ad402bf-31fd-5940-a6d9-5bc422948883", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.3 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.3" } ] }