{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:626831ee-f8a0-599a-8bb2-60469359f640", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1", "type": "library", "group": "org.eclipse.jetty.osgi", "name": "jetty-httpservice", "version": "8.2.0.v20160908-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f5a8e280-4d9b-5e7c-afe7-15807c1d5304", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty.osgi:jetty-httpservice 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dec5d5b3-81da-5409-8a92-704156d9e945", "id": "CVE-2017-7656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7656 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ce9ccabb-595e-55e6-80dc-d7d1eb45699a", "id": "CVE-2017-7657", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7657 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1f600097-ddfa-592a-92c4-8b9e16a51850", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:997ad09e-8e74-5577-9d32-2963cf83da1e", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2dd3414f-75ac-5e80-8ead-f182af04b64d", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f016cb69-fc30-5606-b9c8-8c1d0008ace3", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d0d23447-0ba9-53ef-8077-a9e5c11b51ed", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:05283bbd-2ebd-5a00-92f9-b8313fadcda1", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9c014c5d-1400-5672-8aa1-51a2d215b224", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:63f26e0f-20fd-5afa-8f26-2802336363b0", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:45a47f54-daff-522f-8e4f-e26fbee09735", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6003f56a-8055-5b0b-8439-3b040cd23be5", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f307c62-b67b-5182-ae06-71834c53ef1a", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:01f4d090-6c3f-5d07-8758-56025ca800a2", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty.osgi:jetty-httpservice 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:405522a0-0b4d-5dd9-ac20-ec9078afeb5e", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty.osgi:jetty-httpservice 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f9cd2839-6499-56ee-89ca-0101569a413a", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:52526f98-b602-5c1b-b9a9-f00c6de6b3e9", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9306fdbb-c511-5c1c-8d2e-1e39523ae923", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty.osgi:jetty-httpservice 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6fd0ad10-c1ea-5095-bbb1-73a706efbd56", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:195984fd-8af1-5cbd-8a8e-68befb00aa52", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e9908a7b-00e2-57c4-9dfe-8f758a9ad6ef", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:87fc5742-613b-5cab-9b20-00f6ee806271", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:05b99979-f187-57f1-950e-cd2d7d921500", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd595e8b-c658-526f-b338-cd3e7f173874", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3e3fe6b7-4a98-59f5-a983-440a206de6df", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5078afb6-4572-528a-9f1b-9d51f86c0f6d", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e1933b50-a594-50a8-a2bf-ac49d3051891", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:98028e8b-33c5-54fa-9327-7a5ee1222110", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:36250cdc-e362-552f-8c6b-df49011fe365", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef896a9e-6ad8-54dd-948b-41b5d4040649", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:398cb4f3-ed53-534d-a6a0-33139f78257c", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f7f70866-246b-5207-8a0a-5f4662af434d", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@8.2.0.v20160908-tuxcare.1" } ] }