{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4f22c565-d05e-5b9a-b772-ff0d1fb16f3d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1", "type": "library", "group": "org.eclipse.jetty.osgi", "name": "jetty-osgi-boot", "version": "8.2.0.v20160908-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3f9cfdaf-39bf-5cf4-bf34-36361a05958d", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty.osgi:jetty-osgi-boot 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7853b6bd-308f-518a-9552-a43e52d19d5b", "id": "CVE-2017-7656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7656 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2acb324-0bef-540d-ab2a-a4f20178fdf2", "id": "CVE-2017-7657", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7657 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fc1973e0-00a6-58b6-a9ca-0d9d0ecf1e78", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:acdf7a69-c1f7-5730-99f6-e1e9aaa6370d", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8b66aa40-e1ac-55f1-b242-890c52e55fab", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:10ace152-3d27-541a-a94f-1fa63be4196e", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e30b19b2-bf7f-5a84-84e9-434f1178abc4", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aada863b-bfcf-57af-b7ee-a03532a018ac", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ddfe4b6f-b08b-50a9-8bed-021e394ae2b9", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ad331170-2e5a-5420-a626-5b857cb8f942", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d89390a-221e-50b1-8f78-dad6b502fe32", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c3a3b2d7-20e9-5f96-b766-153e22ff69dd", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cca8be42-4682-5602-86dc-9a2404b44d5a", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8937acbe-01c4-5119-a5fc-982db1111241", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty.osgi:jetty-osgi-boot 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9d8ffcd7-ba47-506c-8888-9a467dcd4972", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty.osgi:jetty-osgi-boot 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d03e37b6-fcd3-5b13-90d9-752788b9e5be", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3e361f20-7364-575e-b3d9-2c5d6068985a", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0f14c870-83c4-51c4-a535-20dd5d5eaf22", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty.osgi:jetty-osgi-boot 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a50ef214-accd-5747-a41c-aa06cad64eea", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae00d873-b26a-5af4-a4fa-98d5bb6ac875", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:479851e6-6343-5a2b-a33a-cd71fb5eff30", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4d07ed6c-c22b-579f-961d-35cbf1237b36", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6a7fa30c-f8f9-50eb-88c4-70168d143b09", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:31755de6-ca14-52d8-998e-863a2a04a29d", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e864591f-3856-5dae-8ff3-ba1bd56c0dd3", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e84b1f91-02f7-5596-b09c-8384ed309478", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3477f1f6-1dce-50b3-a97b-01c09fc91f98", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:99126353-1c6f-5319-809c-931c9c246b30", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b577ab36-d525-5448-a702-6ea6c1a651da", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aed23627-4b58-5239-b753-541c75af5b3c", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ccb08f3e-5000-53fa-b7c1-7a68f6f08f44", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6b4da1d0-3408-5df7-ad8b-b713865ae416", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-boot." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-boot@8.2.0.v20160908-tuxcare.1" } ] }