{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d1dbe31e-9671-5c8e-9725-4bdef6cc111e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1", "type": "library", "group": "org.eclipse.jetty.osgi", "name": "jetty-osgi-project", "version": "8.2.0.v20160908-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:20b2fe0f-31af-51bc-b5a0-5a22b524e0f0", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty.osgi:jetty-osgi-project 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6ac012b6-4dd9-5c5b-9836-253065769e87", "id": "CVE-2017-7656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7656 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5f58d5c6-28b6-5c67-80cf-70b5b574630a", "id": "CVE-2017-7657", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7657 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e309ec65-7d38-5432-822c-684279aa4c52", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae0bdebb-fb53-5d8a-998d-165cd1ad4e8c", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b1765e43-3434-529f-9a9d-cff4f25afa83", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d9deb8e-386f-5d56-907f-b5ad5ea1162e", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dde829ac-a66e-5bc4-9575-f143e3da64f6", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3ac48126-e0a5-5cc2-af0e-77c1f0e76155", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8f244c06-c7d1-5b70-867a-1f5b2906fd79", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c53c82ff-cb6a-5692-a180-8a412e2c5f18", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:933a03bf-b5e5-571a-af15-479deaa01837", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:68a91fdf-20c2-5088-b151-61a35924cb80", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:85bb8b9b-52e7-5204-9cf0-afd23783642a", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c75c4ea9-75ef-5a9b-b029-1da1ddfd3997", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty.osgi:jetty-osgi-project 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:83bae489-7736-57a1-aa25-cf3529b5ee2a", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty.osgi:jetty-osgi-project 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd8e7d94-8a45-5aec-9cdc-f7445db18e00", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:51c8e96a-aafe-547e-8257-bcbb6e247aad", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ed407b87-d149-5654-b853-4caff52c84d0", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty.osgi:jetty-osgi-project 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9d1cd114-998e-57ca-8540-8d871d492b0a", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bf2b433e-1389-5134-9046-3dd3d70d7a79", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e7217a79-d4fa-5db1-945d-ad2324478816", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0bd1dfac-7091-5f4c-b2e8-292da694cfb3", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8bf1edab-9e4f-5db1-b53c-11e6b30c02c8", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b6e70d13-381b-5608-976e-607cda67bddd", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:381b1eae-4868-5953-9fac-44f46ce37422", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1cc94edf-5893-5f98-96f0-9195ea729a8c", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a64d316c-b7be-57b1-aaa6-76fdfa5901dd", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5e999172-8995-5b69-8b7c-ab2692821146", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:55016054-45f7-5cd0-a982-3ab52984b956", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a6c676d1-8e1e-5a88-b9fc-41d986963cbf", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6169977e-723c-5b2b-8515-dd4f1366050e", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:24f4e00a-2db1-5dfc-9845-f0bfca11f489", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.osgi:jetty-osgi-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-osgi-project@8.2.0.v20160908-tuxcare.1" } ] }