{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:48131167-cbf4-525a-b5f4-6a2557fbecbf", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2", "type": "library", "group": "org.eclipse.jetty.aggregate", "name": "jetty-websocket", "version": "8.2.0.v20160908-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b43c9d72-3a51-5e42-bb94-91cd4c1a938c", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty.aggregate:jetty-websocket 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3245d884-e461-544c-8b65-23af9e65bdde", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7afec55c-afb8-5974-8115-a1d8f2b96136", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fc06c86c-2e7f-54ac-bc96-8a01e6431110", "id": "CVE-2017-7658", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7658 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c3c5f118-91e7-5bb9-ae5a-a1265e6f91c9", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fb31d4c2-4946-5d8a-9c38-853f555ca72f", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2e4cf538-b23a-5c30-a677-5d93f4b78915", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c3347cd4-3f6f-5ed4-a6e7-43493b90f0a6", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ddd9697a-7a9c-5909-a5b1-1bd9f71b395b", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c69a6ef6-25b8-596b-8e96-e4d4b36ceab1", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e73171a1-2692-5b5e-b0a3-de995a58d9c9", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c629b557-ac83-56aa-afc6-cde00927faca", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:01506e6a-01ca-5d1e-97fe-0f1ab3f56a43", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ee832d45-b192-5373-8665-da84e2c33e29", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e961896e-e977-558b-9b09-8d5ba75e01d9", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty.aggregate:jetty-websocket 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2c89615e-5f83-5f9b-8bb4-0f13376025cd", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty.aggregate:jetty-websocket 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c9dba12f-0618-5902-b020-4b7192d7d615", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8a281a11-5f62-5100-a913-4bfa14940e6a", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2d4908f9-3dec-5804-b52e-ca2d69a35311", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty.aggregate:jetty-websocket 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:86572ad1-5cec-5bba-be83-3678b210c14f", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1d0770a6-0306-5256-ae31-ce219bcb1060", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2decaf28-1662-587f-911b-f296994b332a", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a699368c-5409-5957-a4e6-825a1db611a9", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0b16a9fb-c139-53d4-b5f3-c9a62b283d1d", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:029a0283-468c-562a-a626-08582e4db3eb", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8ec16d6b-f5cd-587b-9968-0844611e26e5", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6cb267d6-2fb0-5b49-b843-f308554eb9fe", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a97e05c1-786f-5e1d-89ab-b447136227a8", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:83f09046-211a-569b-8271-9828a2c284f5", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b5f5b901-06f6-5cd0-8dc3-79201a073c51", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dcf84c4b-64d1-551e-89ab-fe3323f6ab86", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:15fa37a3-e121-5a92-a35f-669203eba59e", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:79d52262-fb64-5448-9998-85502aa8674b", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.aggregate:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }