{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:179b12ad-f05b-57b9-9ef5-b0e11aab1496", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.gcloud/jetty-gcloud-session-manager@9.4.48.v20220622-tuxcare.3", "type": "library", "group": "org.eclipse.jetty.gcloud", "name": "jetty-gcloud-session-manager", "version": "9.4.48.v20220622-tuxcare.3", "purl": "pkg:maven/org.eclipse.jetty.gcloud/jetty-gcloud-session-manager@9.4.48.v20220622-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:0d2744cb-03b4-5a18-885e-74ddc43d6108", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.gcloud:jetty-gcloud-session-manager." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.gcloud/jetty-gcloud-session-manager@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6fc57e9b-f8b3-50fe-88ce-23944930c58e", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.gcloud:jetty-gcloud-session-manager." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.gcloud/jetty-gcloud-session-manager@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c87c3a1b-6644-5325-b5a6-e02137e16e07", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.gcloud:jetty-gcloud-session-manager." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.gcloud/jetty-gcloud-session-manager@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e1cc6bbb-8a5d-5824-8635-47a7b6b36855", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.gcloud:jetty-gcloud-session-manager." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.gcloud/jetty-gcloud-session-manager@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b9fdc882-7df9-53fd-9d31-1570fd40eb9c", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.gcloud:jetty-gcloud-session-manager." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.gcloud/jetty-gcloud-session-manager@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1da4e794-58e4-5c9c-9ef2-69ba8762bbdd", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.gcloud:jetty-gcloud-session-manager." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.gcloud/jetty-gcloud-session-manager@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0885f90b-8120-507e-b4db-da7a771bf1a0", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.gcloud:jetty-gcloud-session-manager." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.gcloud/jetty-gcloud-session-manager@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fb219487-aa92-58f1-8de7-415257950a97", "id": "CVE-2023-40167", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-40167 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.gcloud:jetty-gcloud-session-manager." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.gcloud/jetty-gcloud-session-manager@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8eb3d7fc-8ec0-5db1-9b73-617dad3b480e", "id": "CVE-2023-41900", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-41900 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.gcloud:jetty-gcloud-session-manager." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.gcloud/jetty-gcloud-session-manager@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1eb5b8de-eca4-5a80-8758-0818b03c7c8e", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.gcloud:jetty-gcloud-session-manager." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.gcloud/jetty-gcloud-session-manager@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:61e97ede-1021-5f14-a7f8-807f45f876ad", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.gcloud:jetty-gcloud-session-manager." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.gcloud/jetty-gcloud-session-manager@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2b7b8390-d4d1-5b0e-ac0d-9f5789bf3b9a", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.gcloud:jetty-gcloud-session-manager." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.gcloud/jetty-gcloud-session-manager@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:684061f3-b3a3-571d-a4ac-9aa819d52863", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.gcloud:jetty-gcloud-session-manager." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.gcloud/jetty-gcloud-session-manager@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e51c6641-7416-5a29-8c57-edbdc16ef765", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.gcloud:jetty-gcloud-session-manager." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.gcloud/jetty-gcloud-session-manager@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ff2017c5-5a5f-5da3-8cd6-3dc563e0f452", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.gcloud:jetty-gcloud-session-manager." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.gcloud/jetty-gcloud-session-manager@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dc582038-62a8-5213-a4b7-95503e79fdea", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.gcloud:jetty-gcloud-session-manager." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.gcloud/jetty-gcloud-session-manager@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cc2afd61-ec1e-5108-ae6c-cca72175da95", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.gcloud:jetty-gcloud-session-manager." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.gcloud/jetty-gcloud-session-manager@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a7ddcb8d-761c-5619-9574-dd0e297d88ef", "id": "CVE-2025-5115", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-5115 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.gcloud:jetty-gcloud-session-manager." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.gcloud/jetty-gcloud-session-manager@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0ca11a59-93c7-5b0a-ae1b-3e0f70eff97e", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.gcloud:jetty-gcloud-session-manager." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.gcloud/jetty-gcloud-session-manager@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6fe4c74f-adf4-549d-8b3e-c47320fcba14", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.gcloud:jetty-gcloud-session-manager." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.gcloud/jetty-gcloud-session-manager@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b426c78c-7bbf-5405-b0d2-2770573e4fa2", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.gcloud:jetty-gcloud-session-manager." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.gcloud/jetty-gcloud-session-manager@9.4.48.v20220622-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.gcloud/jetty-gcloud-session-manager@9.4.48.v20220622-tuxcare.3" } ] }