{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8dfc5a73-651c-5594-ae1c-9045e113f479", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2", "type": "library", "group": "org.eclipse.jetty.aggregate", "name": "jetty-all-server", "version": "8.2.0.v20160908-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4690427f-2e26-5018-a03b-d4a8ae7eeb03", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty.aggregate:jetty-all-server 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:945791da-f513-5655-b5e9-edab7bc77dff", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:92fe587b-de09-5ea1-b990-5be2aa6e8b0e", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:81a6b43f-d367-57eb-aa3d-cd0fac5b2a9e", "id": "CVE-2017-7658", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7658 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0e8e659d-23bc-51da-a8b5-f77025e3ee96", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ccc887e4-6f85-58fc-8c7a-44e345ae0efb", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eb6668a8-30b7-560a-88e7-b7cf9680a3a4", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:792a7258-a890-5248-ac8e-f7c7dd8f5af3", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d440bbe3-ea52-5010-b6b0-2a558a712e39", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:884e4e15-c768-592f-bc23-9a4847431d9c", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a27b4e2e-21aa-52c4-89a8-96a0fd33503e", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:99c4188f-f15a-5b47-91bb-f63bd6da7a55", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7340dbf4-5b97-593c-9147-8f56b44ec037", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e6a2ded2-d390-5e6a-bc29-dbb80d96aa38", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aea7a84e-3d0a-527a-a25e-a2bf575d9a62", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty.aggregate:jetty-all-server 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cc4783f0-e48e-5305-a899-a4ddb641e058", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty.aggregate:jetty-all-server 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8b3b330b-16a7-5ed7-b143-73c54b01cd2c", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:20ced1d8-453c-5ada-9883-9c532f8acef9", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4864c45a-40c1-5a61-94a2-7a43640338cd", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty.aggregate:jetty-all-server 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:73df6028-402c-5367-a90a-d68eb3ed5081", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8b2c04cc-e2e7-5405-8ea0-bd01c3340fd6", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:48bef455-f06c-5d96-8668-91626382f45d", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:28157ef8-7324-582f-91c8-de5533581962", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:119d8ea6-eff0-56ab-b359-0227591cf116", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3d891d7e-9dc9-5934-852d-1a14755acf84", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fd4ef25c-f72b-5721-8e91-d441ab21edb0", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:83fe75c5-b57e-5e93-8467-2aa826be3773", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ce6281be-d23f-531c-bcdd-8cfe8f455d6f", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:70bbb8c9-f426-5f84-9e1c-068f75897b2c", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7d1cc79f-a061-5266-91d3-b3b6fedade8f", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b3464097-72e5-5bb3-845e-b0c0e02243d9", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:411f2156-edff-5050-b26a-160ac8519f85", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:41469780-c50c-571e-b2d4-83481cb6d95e", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all-server@8.2.0.v20160908-tuxcare.2" } ] }