{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:bd84a2bb-a3bf-5d06-92ec-bc78d6d383f3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2", "type": "library", "group": "org.eclipse.jetty.aggregate", "name": "jetty-aggregate-project", "version": "8.2.0.v20160908-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2aa76248-1ac8-5fd8-a123-b44a81d16bcb", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty.aggregate:jetty-aggregate-project 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fba9e83b-d8f8-5d3a-a616-380433bd1a6b", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9e26186b-9682-56a3-abc4-287d08f7e80b", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:51a2a7d6-9a31-57b9-9469-ec850208fb14", "id": "CVE-2017-7658", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7658 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:212e5442-7a13-5261-9c8d-cb0216d8ea8c", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:763f4e15-7d59-5132-b18a-91855260fe00", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:34347363-837f-510a-9929-d0cc55aeb091", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c7505dd5-b926-52c9-b8d6-b88c14882b22", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:004f33c0-1108-581e-8273-b74c98d43d5a", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bf9bbaec-4a7b-537a-92a7-30cdf9855b3d", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c0f2b3fa-c243-5d64-8158-1f0635dc5621", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9c53fee8-4699-5a54-971f-46eded11cc0e", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:80f3967a-e4a5-55d4-93ee-12bb5293c295", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:45d59e28-e5ae-5c17-85d1-0f9e19978c65", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0439df9a-3175-532d-8740-4a911cf1fefc", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty.aggregate:jetty-aggregate-project 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9165b867-57da-5b97-a120-78ff2933fb15", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty.aggregate:jetty-aggregate-project 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:133874cb-59e2-5fa1-9de6-77695ccc2621", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:17afdf5a-c0b0-54e5-874c-0b657a5dc767", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:60405e59-ca6c-525c-a579-faac21628f0e", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty.aggregate:jetty-aggregate-project 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:69eacf59-400d-57df-81bc-52f0380fe29d", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:04742181-f5fe-5676-9e39-8307d950b8ab", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a265f75a-7fee-5de4-96f9-e6ca0f482ed7", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4a202c96-5dff-5ed9-9a7e-693bd27e00e0", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ae15625d-e13a-5663-a1a8-63b4b210c252", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cf72f157-811e-53ab-82d4-9004610df751", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8093380b-47bf-5197-ab5d-94026528a3cd", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3f45efbe-31f8-5dbb-977c-0597775bfe9c", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7b8590dd-91a8-52b8-9ab3-e6b7685bec95", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:68c6617c-8a5d-51b1-85ba-26baad066d45", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2b46e209-1ba2-5865-b099-2053ec472c7a", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a5c1a070-4a03-5e22-b60c-e74dc4fdf89f", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ca8d4fca-4117-55fa-8e7b-0939c12f9b14", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8d98574d-8733-5b39-a372-c1c73fe5457d", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@8.2.0.v20160908-tuxcare.2" } ] }