{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9aabca0f-223f-5c4b-b42b-cf8e13021c52", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1", "type": "library", "group": "org.eclipse.jetty.spdy", "name": "spdy-core", "version": "8.2.0.v20160908-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:fe73e1bf-3752-501c-ac7f-afec01cdd559", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty.spdy:spdy-core 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eeda0f66-b3d8-5cf9-b409-7dfc6dd88f8e", "id": "CVE-2017-7656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7656 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5295005f-47dd-5b0f-af81-8e6eba0ad3d2", "id": "CVE-2017-7657", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7657 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f9384cf-0794-5a9f-b6df-aa2625a82706", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a3cd7f54-6bf0-55c8-a801-2091d095a9d2", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0969d8fe-cae9-503e-8197-9f2d3056279b", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:073c5478-24e0-51f8-8ba3-1e0f3b9fb9a0", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3385ca9e-c14b-5429-825a-2eaaaa3cc55d", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6f6e83e0-2f7a-5a08-b3f7-4cb1bc4055f4", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96fa98c9-1fd3-5660-b55b-078c0c13602d", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1327ac8e-4162-52ff-9e25-5f94e7903470", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b3e8295a-914c-59dd-aacc-ac54b82e0e9a", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96d85959-f537-57a6-bff4-c010e8337bbb", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6f2ee28f-8a45-57c0-8c93-948140cdabdc", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e1887d52-3214-57be-9289-6fb8a57370fb", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty.spdy:spdy-core 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:359f2fda-e69e-56d2-8e3a-f283fa6bd784", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty.spdy:spdy-core 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7811f4fa-4468-5bb3-9774-6799becb148a", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3f7c0d0e-e104-51b4-a238-174abceb1767", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b6e23641-206c-5f72-b389-7cd9b25ca742", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty.spdy:spdy-core 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f98aeca1-caa8-5e03-a30d-186cdaf69e57", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a488b981-6b18-5119-ab66-88057b53249f", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:986f5267-67f3-5818-bf73-6f30fd4fed8b", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af258cfd-2eac-54c2-bb1e-c972e8ba7342", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6d1c90d0-74c2-57b3-8071-2f39d971d299", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1961e258-9728-5730-9caa-283fbd7b4152", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fafbd7fb-e660-5104-8038-1c6aacfe6546", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4a6c1713-deaa-5fbf-b6c0-7eac150b139c", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f840014-dad2-551d-ba50-7acd2b91966b", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d21b17a5-e54b-59b9-95c0-800f9ecaf569", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:974018e0-9a59-5269-8102-8288f6fbb863", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c5605ddc-4b67-5b3e-aa1e-bdeb5982d877", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:65088f96-1e60-5923-abce-18aae1fba3a0", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b145cee6-19be-5bcd-baf4-2a9c75982ce7", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.1" } ] }