{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6e43c27a-5041-5dff-b473-2f9dfc5de4ce", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1", "type": "library", "group": "org.eclipse.jetty.aggregate", "name": "jetty-server", "version": "8.2.0.v20160908-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:10a9fddd-57d2-5bbf-a14e-42398f71363d", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty.aggregate:jetty-server 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f96572dc-85ea-5248-9a8f-973d3f7166c2", "id": "CVE-2017-7656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7656 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:373bcd14-9855-52de-b562-ee5d80b1be30", "id": "CVE-2017-7657", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7657 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:df2a1585-4a7e-5e86-9f84-c20ca1b8fa48", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:367e62cb-19a6-570e-bca1-db9aac5c6327", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d4e89e85-1cea-5f56-b195-f1fe07338bc5", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7e34a7d6-fc1a-5873-b2a2-eb9878f14343", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:321894fa-4960-5aef-a215-8cc5c10c1915", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:efe14228-dbd2-5e61-a9f3-ef3fe08e1025", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c7d7bfec-a807-5315-87c0-35fbce68190a", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef7393a3-614d-5947-b001-9f29e5edff18", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:07c19aa1-10e6-5273-95eb-176720a17197", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a9d919fe-625e-5de1-8757-400e86f75580", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f28747ac-fd0c-58ca-a288-aece7d3d178f", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2590a3c9-8237-50f7-8bb5-5bc78bf2440d", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty.aggregate:jetty-server 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bdf4200a-87d9-5686-bd73-d0e14b7e42de", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty.aggregate:jetty-server 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:88e83da8-64f0-5bff-b64f-f82d19697611", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6fae4c4f-e40c-56ef-af90-8b765e1ce193", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5eb46566-2cf2-5dc1-ad35-93a4f8bce436", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty.aggregate:jetty-server 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:89b3938d-e551-5339-a2a3-8fd7fb226758", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b61eb341-d3e7-5c4d-ac38-068f15256a76", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3801d638-5467-56cb-b5cf-834109614f53", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:226cb3db-bcbd-5741-a59d-fb31c242ee27", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ff3970aa-38b2-5399-9917-a8d2d86de17b", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c76b02c2-077b-549b-b075-c2107592ea0b", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6d9eb6b2-9183-5e1a-9b32-024e169e6bc8", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a0e50e08-ab53-5bc1-8b76-f81463c31feb", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eb80163d-3536-58de-a2a1-dd49a6ca8ce3", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3e5c322e-ccfa-547c-a3a6-e6a7e2b9ed3a", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7a5efa36-64a3-5dc0-bd79-8e26a0504a5a", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8e3ecffc-98a6-53c8-8340-efd98355de8f", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5075bc21-4cec-5471-940d-8202cccc5059", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4034a388-fc89-5dff-be11-8ef15b477e84", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }