{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5ab8d8d7-d444-59f6-8764-248492b44cff", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2", "type": "library", "group": "org.eclipse.jetty.aggregate", "name": "jetty-all", "version": "8.2.0.v20160908-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:0bd51134-3418-59dd-8e99-cfd45efb35c2", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty.aggregate:jetty-all 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eed023ab-a4e3-529b-b845-ab32be5295e1", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5be49f1a-8990-5957-a033-e50601cdf013", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c2f1bc01-a3b8-5a1d-8250-93354723e7e0", "id": "CVE-2017-7658", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7658 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:53680756-eb6d-50d5-b781-45a993c4ab3a", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1e29c033-acba-5dc9-8cf4-49cb8e7cf85f", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cda38d7f-19c6-59a7-b967-36caf665047c", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a3c1094e-03e9-5c6e-9007-c85e72ea9984", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fdb1ca5d-4cd6-5eb6-8f07-7aca6e3aa111", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:adff0c59-5cd9-5222-adf4-bb8e53c78374", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:756ad7d5-0435-544f-b25c-42b40d1d85f8", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:85eb1de6-e881-51f0-84e0-66a488ce9d82", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f5c5611f-f1cc-59fe-a275-b4b0d09ccf3d", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:71fff594-dacd-5d6b-addc-dacdf3babbf3", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0bb8873d-6e10-5d94-9c79-ecbb11893d9b", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty.aggregate:jetty-all 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:64d9ca56-1bda-524d-a903-fc28b3e80a9f", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty.aggregate:jetty-all 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c57b3ffc-2992-5614-b361-b70f7c519390", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a4b3490f-bfc6-51c9-9ad6-c41fb3ea9118", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4440bba2-f67e-5eab-ba7c-99466a6f7cf8", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty.aggregate:jetty-all 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9621412b-0e6e-5436-9e9f-75ad58492faa", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bcf18811-bac4-58e5-b06f-4a5cd2a2d9a5", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ad3130cf-954a-5773-abad-93f318df56fa", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:72736c4b-106c-5add-9690-fba2598b5358", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e392e62a-7394-55e4-90c4-9f31e8a46874", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c48289af-55a8-525f-8624-191d1fac8f31", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6d4a30dc-271f-509b-86f5-db5678aaf9e8", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7bca4919-fee3-5c83-a6bb-62e3d78b79e3", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2568016c-17bc-5c3b-9247-849d540ad3da", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d12f44f5-5a5c-53f8-81ff-485da56d1ca5", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c74d1ebd-14e8-5479-b796-0b5fd4e896d2", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:53a46a30-e256-5f0b-a67f-0f6302bc8d80", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0bd5c704-62c9-5941-94e3-c3ff3a3f3525", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:08035ce2-630d-5883-a210-cfe266cd75c3", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-all." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-all@8.2.0.v20160908-tuxcare.2" } ] }