{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7d2de279-ddae-5762-add1-d87000d58829", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1", "type": "library", "group": "org.apache.tomcat", "name": "tomcat", "version": "8.5.100.tuxcare.1", "purl": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:39c592c6-8801-591a-ae47-8a6171fe8faf", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a8bfd19f-1d52-50ed-a59f-1c93783f3377", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b54b193f-3792-5cd0-9cf9-262ab0a48b80", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d9e3a44-a04b-5e4b-85f6-a6140757b94f", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef5995bd-225d-533f-98a2-28bbd9c2c176", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e0eeb8d-3bdf-5397-927f-0c69bd173e39", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fa0eb834-ab1a-5a97-bc6a-cca4ae1644ef", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77b8064e-3179-5467-ba44-103b17a80620", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ed720fa-e7af-568c-823e-d3d5d76d406b", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8a92b096-cdc0-5bda-b839-0bb1ee463961", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:646a5a0d-9d6e-5935-98ac-ea9e0d9543ff", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c19fcbad-7e3d-55f1-ae36-b080a4da6996", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5ca2cbf0-c193-593d-a318-253ebf2acda4", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:21e036c0-0670-59b8-84d0-e8b525486b25", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3767cbad-284b-5b6d-a1be-f6d610f4c145", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1537d861-211f-5337-a912-2b5d3b581999", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:92f86ff6-205e-590c-83db-5d444447c1dc", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:22ce1405-a6d4-59e3-a1f6-674267dfd55f", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4ffe7d45-7705-5ab3-ad23-3a60d60d8ca9", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7f92f099-2661-5e73-9fa6-5ec51ac56846", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d5dad42b-1c34-5d7f-87c0-0eeb508fdcc4", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ff74d955-cc93-57e9-b0e9-8845ec12bb5a", "id": "CVE-2018-8014", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8014 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5b3f813c-9990-5c84-9caa-d7bb36075b47", "id": "CVE-2018-8034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8034 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:01e78fa1-ad1a-51e0-ad1d-fb800a129016", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5d5f3d32-d36d-5455-ba1e-114cd05d80a5", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96d7bcd2-069f-556f-bc73-d8001978088d", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6206d006-1846-586f-83f3-5fbe5dd0cf37", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat 8.5.100.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:02871ab9-78f8-5bce-8ffb-c7b04a896dab", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f651b3a3-6e55-5130-bb86-b5f7c2347955", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4e503cbe-216d-5dd3-8366-f428cedc0706", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0fcb2c59-d92a-5a51-a0f3-4faeed896b81", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5d4e2fc5-fb4d-5ba9-ba12-137bf52c1ed1", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4348043-9d4a-5483-8550-f31970f84443", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6487c8d0-4764-59d3-a7c1-4c06cfbcba38", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:93b873ed-fa5b-5818-96ea-af924f22fe53", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77609699-e43a-52f2-922c-b5dd569d6467", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:54cf4d5b-749e-56c1-8967-da5f99224fc3", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2f6e4ea9-6730-5a46-a0cd-87aea9cb33cb", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1548ee94-87b3-5c08-b388-27eb1c72c340", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd03855e-8740-5569-8c28-6e34a0112fc5", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c4cfdf29-5dca-5964-811c-16b7f849b338", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:69221173-4209-5ec4-8f5b-208578afbe6d", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e9ca48e3-ab0b-5b6d-905e-73dc1a242988", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4a3a9284-e562-5796-96b3-04f3b2f86618", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8179d732-8494-5c83-952b-91e1d2e4763f", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fa8e94e8-f9b5-5a27-877c-970242ca2c49", "id": "CVE-2025-48989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48989 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c9c4f21c-d843-5054-baeb-37f886f92800", "id": "CVE-2025-49125", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-49125 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ff75f1bc-d5d2-501f-96eb-9767ecd98153", "id": "CVE-2025-52434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52434 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6ad00c0d-14d3-51d0-a473-f7dc66d9e8aa", "id": "CVE-2025-52520", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-52520 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ab205663-57f8-540e-9486-288446283f5e", "id": "CVE-2025-53506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-53506 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:51ca0c93-36ff-5e14-a42f-04d732cb275a", "id": "CVE-2025-55668", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55668 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:95ae36bc-c3d1-5d60-920c-70ce30ef62bb", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b1855c80-2ffa-5df0-bf55-f7c45e3496cb", "id": "CVE-2025-55754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55754 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:597e5044-a12f-5e3f-8248-cec265340094", "id": "CVE-2025-61795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-61795 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c9c0d720-bdf8-5fa3-9f13-f8fa0045f678", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5188091d-3135-50f7-9d2d-b18996895c7c", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a232c7d6-5d17-5762-b4cb-5bc05e92f0d7", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5c3bfefe-8426-5b33-88d1-70aa3b2531b4", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62bb9dc0-5022-5764-8169-84666877b294", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:052e4d40-bafb-55e3-a5e1-a794897f23ab", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100.tuxcare.1 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100.tuxcare.1" } ] }