{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:12f98aa0-f4df-52c0-b048-75d681037f6d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1", "type": "library", "group": "org.eclipse.jetty.spdy", "name": "spdy-jetty", "version": "8.2.0.v20160908-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9f7c79c5-5b6b-5082-95ba-3b8e76bdf004", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty.spdy:spdy-jetty 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4b9111dd-50ac-5d58-8e81-75ba4a047c29", "id": "CVE-2017-7656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7656 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:16746f42-05ae-522b-b56b-f525b548d61f", "id": "CVE-2017-7657", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7657 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d3c943dd-7322-539f-8b37-6960f5d5a8f5", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:056488e7-074a-5dbd-abef-66c306bec885", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f0433f57-0005-5ea6-bd02-6ee4d25909ad", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3312cbcc-203e-5e8b-a2e4-0dbd168733e7", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:538902ae-8ae5-5d0a-b494-3a57371b8eea", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ee39247f-46d9-5818-a7b3-c7ede3633452", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ba197c40-32f3-5e0a-ae1d-1ef51c63aea4", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:baec1ebd-497b-5ac5-847f-e95eb13540fa", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d0d0301b-c207-52be-ad78-01cfafd3291e", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:39de77e0-6435-5849-8372-e52be8df4969", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7fe9e4a1-edc6-560f-926b-dfa762169656", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ffb4478f-32f1-5f51-b3f0-9ba0344615eb", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty.spdy:spdy-jetty 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:abee0714-05cb-5639-a295-5e705b3c366d", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty.spdy:spdy-jetty 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:99c42518-38c7-5773-baed-0e4b437c8053", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd2fd444-3542-5168-a03e-fd8b63c81b3d", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:91f7106f-a21c-54ee-8dc6-dd06acf00cb8", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty.spdy:spdy-jetty 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:929ed27b-0a22-57c5-b928-6a2b04aa8dca", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f930a976-bc21-5c4e-b838-a6036a8ffb9e", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:13982858-92b3-555b-8367-4f74ae737957", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5d004b06-d11f-5d1a-a875-a7e30de5b348", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c6c42f49-bf8b-5163-9b8a-f3eb5a174ed4", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8d7ba776-d952-56cd-bc1e-2d36de12d091", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e3a8e319-636e-5133-9e07-e9600bd27688", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8f5a80e3-254a-5cb8-9e61-f3ec31ade018", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8560b2b3-dd28-560e-aa95-840e5b483418", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:223eb360-a52f-51cc-9061-36053e7c07f9", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:20781abc-a429-598d-94cd-a10e920ce27e", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a057f14-636b-512d-92a4-5c01aaca02a6", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:78af058c-8fe0-5f5e-92e9-5d87ff922b16", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:826535c8-3301-5f84-a03a-b91b873181ac", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty.spdy:spdy-jetty." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-jetty@8.2.0.v20160908-tuxcare.1" } ] }