{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9b645e94-1b80-54e9-9411-d6f2edce4aad", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6", "type": "library", "group": "org.apache.tomcat", "name": "tomcat", "version": "8.5.100-tuxcare.6", "purl": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e93e45ab-b8be-5b4c-af85-78a64b8f797c", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:db10fce4-0dec-517b-9674-4b57b3d8e1b6", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:9f192d31-1ae9-5695-be07-2bf16d4c1dc6", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:6264412d-20d5-5e3e-9391-0ef62f757546", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:11b8e1c2-7627-52ad-93ab-daf64d39b667", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:3eff70b2-74b5-53b9-8e6a-e33a34be26fa", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:d85eaa5b-93cd-5bf2-9b6d-56117895c035", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:a55304d6-aaff-529e-81be-5ee1fa1ff14c", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:54b6b109-f63a-53ac-8267-c1158065a36e", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:17465939-33c7-5c44-8701-166e5094cb1e", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:11269d15-7739-544d-8498-33fcdd1067a0", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b864f7a9-54f6-5dbc-9c3c-350ee652e603", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:d4a9b18e-ed15-56bf-8cca-1d5a7b8dcd56", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:4d926c4e-4c3b-53db-a90c-8b6daea3e5ac", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:59b6a8dc-842e-59a2-8e13-9d68c4d3bceb", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:7c35c6b0-4ee0-5a6f-9af7-03cbeff58e5f", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:f3cdf953-8153-58e3-945f-7e9e1740dbb6", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:eaf405a0-0a75-5dd1-a007-f2f2dd844c73", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b3626bb6-6eac-53d8-a22b-5d780e58113a", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:2b9a81ab-c896-5f26-9953-3715e323424c", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:67309234-657a-58ab-926d-826aadbbac7b", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:01982eac-0aa1-5c74-a650-36fc9be696da", "id": "CVE-2018-8014", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8014 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:93b2db31-c86e-5016-b838-04203f9a45ca", "id": "CVE-2018-8034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8034 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:942a35fe-0ba5-5786-954a-963111184727", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:f15b64ac-916d-591b-987e-d740c65516c6", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:32c33da9-430e-5953-a786-10d966340e52", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:ec3fedb6-a38d-56a8-b179-3661f27b81c0", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat 8.5.100-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:22dcf3ea-edc7-59bc-8e4d-ae54f57bfc10", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:8fca4649-1341-51c5-9873-286eafec2883", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:ad9949ef-b266-5ffd-9964-584b47c5f04e", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:98b22b85-69a3-5559-8607-ff967a683649", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:8bc18ff8-bea3-5ad2-aa46-f9772e677e03", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:60fdebd2-77a6-596d-866a-18464c9f10d7", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:7de35bca-3915-5306-bbb4-29d6ffa39c24", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:97d50558-9a8c-5a6f-bf4c-efe48e3f40ee", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:afac0c04-bafa-51b0-a320-2273149d37f3", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:ea017acd-c32e-59c4-835b-fe302fb7ee8c", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:f006a1e7-a986-538b-b1c8-7e25552e4c03", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:bf7b3ac2-e16e-55de-9ad3-e273403c1db1", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:206bdb31-0bb3-5cab-ac8a-5fc34d4a522e", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:30969232-2698-5d2b-938d-c97ddff5e3cf", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:66314f70-242a-5c4d-af28-62bf2a301189", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:4661ad93-81fe-54ac-b070-11d62a341ccd", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:56510e1d-addc-51c1-becb-dd0535981447", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:25df6892-9a4f-5ecf-a2af-21fc9a5c20e3", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:98965f18-72ee-56b1-b1e9-cf6f7fab639e", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:7459b31a-60b6-549d-bf15-e407001ecb38", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:53137d38-6b79-5ac2-8673-cbce7ba63e41", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:0df594a2-ecb5-545e-abee-68ebf0e24fcd", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:cd266b61-7a81-57b0-97ba-3ab4dc11fa07", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:c12042f3-4ffe-522a-9c66-5cb7f57c99d2", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:53d28a72-378b-59f3-a43a-ad1348afad03", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:6e00bdb5-af50-5ab6-ad20-1d8512bf9cf1", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:fef3493a-8e77-548a-b295-4a58a6f78ffd", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:e204c32f-158b-5a97-abcc-1c8bb33149f5", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:1b5d08d6-545a-54e0-9b65-8650e445c0b2", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:75aab7c0-7155-50db-9548-c48a654342ec", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:e7b8f128-8d17-5551-871f-c1729e4e4e3a", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:17b47aa6-b6d9-5525-800f-e8c25abf8d0a", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:a7746c2b-26f0-52cb-be78-d7c1ecd11404", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.6 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.6" } ] }