{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:96e7a356-f312-54d5-bf08-8d79a13af91e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2", "type": "library", "group": "org.eclipse.jetty.spdy", "name": "spdy-core", "version": "8.2.0.v20160908-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:fb1e5af2-2167-5840-9fab-75fff4a6f9ed", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty.spdy:spdy-core 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:491c27a4-9635-5b42-ad75-165ebbabf3cf", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:41cabbf2-5a2d-5ccb-a5fc-8b8712d20543", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4130d336-072f-53de-8e1d-901760fc89a1", "id": "CVE-2017-7658", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7658 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f65ef634-527f-50f0-aa83-0b7e471ddeb3", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c6e6213c-0ab8-5169-a012-024fc51da6ff", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c014a0f0-1fb6-5aeb-8f55-4ccb1cb168fd", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:326b3bac-3b1f-5ca5-93b6-424b7452be31", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f4105a10-be18-589b-b4f1-f3c6117d0873", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7e739af6-5eae-595a-b313-876e763fba9f", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c5165483-7ad5-5a35-930d-c1c986267b12", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4d95994b-c81f-5e7c-8c88-74761b3dd6ee", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:048cdb92-2534-5ee4-9f92-caf6a8b8478a", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d575516d-1ab9-5ad3-870b-65b961537e2a", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:10a2ba18-a554-59dc-a64f-8d0771908594", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty.spdy:spdy-core 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4cc38241-f774-5e47-9d80-ff8d2a523eef", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty.spdy:spdy-core 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b2174d19-2439-5c46-8a5a-80e05d8a81c2", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c46822a7-99c0-57b0-af9d-6c5bb894b5c9", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a4cf2703-ef7d-56cf-88bb-130c2c9077e1", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty.spdy:spdy-core 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:87c4e99b-83ca-51f7-b0cf-91e42ef7ce6f", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d7a13bf1-7617-53e4-b3b0-be75e9136e6b", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6e085049-ed56-5e53-8bb0-b10f1b0c47d8", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f779ca0a-d603-5285-95b9-6318c34da673", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:24162ae4-1d7c-5b86-97b8-1d534ea9bc84", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b3dbcfcf-dc91-5982-9179-85e276de1a9f", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:051510d6-37e2-531c-ba0e-1d81274a476e", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5d35c562-7ef3-586a-823d-05bcc881cf3e", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:45aa8e6d-9b4a-530d-b56e-f7d55c0fee6a", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:28b24471-003d-524d-86f7-7a2619b97dbe", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:26eaf2df-d6a2-5778-8043-71ba12539dfa", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3a778be1-a5bc-506f-b93f-16d46a471a03", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:08c22919-8cfd-55a3-96f9-9279587f0e73", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cce8c73a-9990-52c6-a127-4ed0d0f09042", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty.spdy:spdy-core." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-core@8.2.0.v20160908-tuxcare.2" } ] }