{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:62de81a1-7768-520b-95af-6627cf40c24c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2", "type": "library", "group": "org.eclipse.jetty.aggregate", "name": "jetty-server", "version": "8.2.0.v20160908-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c74dd3c7-1ac4-5be0-8310-1a8b3acbd288", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty.aggregate:jetty-server 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8e442419-5766-56da-99c0-ed72b8b480a6", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:733506e7-02af-54db-b581-be2b629b45f7", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:53936e9e-424b-51cf-957f-280192842a45", "id": "CVE-2017-7658", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7658 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:686b2a01-6720-5a7b-801f-adbe9c6608c8", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:daefd68e-4306-58d5-b60b-25f3c07a2b5b", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d63a937f-18dc-5a47-afc7-e295fd159b45", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:08c6f602-2ece-5f1c-b6ee-fedee60319bf", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d0d024c1-aee4-5213-a7a5-f56aef6d4a31", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f2ef41cd-bb13-5098-9bf4-a7bfe38595fc", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d31098dd-4986-526a-823d-01412880c192", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8daa18b5-7d37-5ce0-b74a-4ae4eff4b45b", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:29d3ce12-8a5f-5a1b-b961-9cc11c58d18d", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b24f04d3-399a-5f92-a593-4edc469fa012", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4bca06f1-001d-5892-8beb-ec5a00c8c396", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty.aggregate:jetty-server 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8ae4c52e-965f-5b37-ad86-f490015b1930", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty.aggregate:jetty-server 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ffa544b4-acb3-5a83-8e06-7c8b94166d2f", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5ab15597-0501-52cc-8ca5-a24f4cb97bc3", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:14e43601-32b8-5aca-a38a-135a264a83b0", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty.aggregate:jetty-server 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f5b295ff-013e-5a64-98c5-76fad02183fb", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e34093dc-e123-59f3-85df-4ec84e864b48", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:abb2d4e7-fc51-5dfe-a5f9-9f2f04da2ab6", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0c8d26d1-d49d-51ea-971e-493a88eba419", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c9581087-f8bb-5dcd-96ef-daa8ab5c8994", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1fc8c102-3767-5d34-85da-e96e056bb9cd", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d59d9bec-0934-5185-9e76-8a732e9d2f8d", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7fc4e94b-d567-5db6-8891-1dd51c30499d", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:490392fd-ac33-551a-8b95-118bb3f99526", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b98c7242-7519-57a4-aa6d-c5e11ab84757", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:80c38c38-c521-5224-856a-606bb7a14a35", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e5d90c8b-d79a-5ab1-84dc-fd9c8020868d", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c76b2379-07cb-5dbd-8da2-ab31aab94497", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d70813f1-3d8a-52a3-ac1a-d542e5ec12f0", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-server@8.2.0.v20160908-tuxcare.2" } ] }